BidenCash is a newly detected website that publicly and illegally sells stolen credit cards.
The name Biden rings a bell since it is named after the current U.S. president, Joe Biden. This might be because of the authority the name implies, or maybe as a form of mockery towards the president.
A recently established carding website known as "BidenCash" is attempting to gain notoriety by disclosing sensitive credit card information from the hacked identities they have.
At the end of April, the platform was initially established, but its offerings were initially kept at a lower level because the platform's infrastructure was not yet ready to support large-scale operations.
On June 16, the administrators of BidenCash came to the conclusion that the best way to promote their website was to give away for free a CSV file that included credit card numbers, addresses, names, telephone numbers, and emails.
BidenCash
BidenCash also provides a validity rating for new sales, with the score being constructed after evaluating 20 cards at random from a new batch of sales. According to BleepingComputer, every new listing is revisited once a week for a new validity check, and if the rating shifts significantly, the listing is removed from the directory entirely.
BidenCash also has a filtering system that allows threat actors to locate stolen cards that are appropriate for their campaigns. They can do this by searching for particular countries, banks, or entries that have the details they require, such as card type, cardholder name, CVV, email, and address.
In a test carried out by BleepingComputer, it was discovered that online buyers can buy credit cards for as little as $0.15 each. The file contains close to 8 million lines in total, but not all of them contain information about credit cards. D3Lab, an Italian company that specializes in cybersecurity, estimates that the database contains approximately 6,600 credit cards.
The collection does, however, contain more than three million one-of-a-kind email addresses that could be put to use for phishing and the theft of various accounts.
The practice of leaking cards for the purpose of promotion is a common method that is used to increase operations. A website with the same name, "All World Cards," carried out the same action during the summer of 2018, releasing one million stolen cards between the years 2018 and 2019.
Read Also: New Google Chrome Extension Helps Hide Location Data That May Leak Even When You're Using a VPN
BidenCash Stolen Credit Cards
BidenCash was also tested by D3Lab. The malicious website on June 16 uploaded a document containing a plethora of personal information of credit card owners.
The CVS file with 7.948.862 lines includes information such as credit card number, type and circuit of the credit card, telephone number, name, email, and address.
D3Lab is able to obtain the following statistics by performing an analysis on their platform for threat intelligence on the more than 1200 newly issued credit cards:
The United States of America has the highest number of credit cards involved, with 631, followed by Brazil with 129, England with 142, and 17 cards from Italy.
The majority of these credit cards belong to the Visa circuit (777 to be exact), while Mastercard has 36 and Discover has 19;
J.P. Morgan is the most involved issuer with 93 cards, followed by Bank of America and Capital One Bank as the next most involved issuers.
According to the analysis of the firm, "We have analyzed the published data set and verified the data contained, not only the credit cards are true. The information (phone number, email and address) of the Italian users mentioned are also correct."