Personal data of thousands of cyber criminals have been leaked online after a popular carding forum was hacked.
According to Group-IB, a Singapore-based security firm, the data belonging to users of the Swarmshop site was leaked to another underground forum on March 17.
The database was posted on a different underground forum and contained 12,344 records of the card shop admins, sellers and buyers including their nicknames, hashed passwords, contact details, history of activity and current balance.
The database also exposed all compromised data traded on the website, including 623,036 payment card records issued by the banks from the US, Canada, the UK, China, Singapore, France, Brazil, Saudi Arabia, Mexico; 498 sets of online banking account credentials; and 69,592 sets of US Social Security Numbers and Canadian Social Insurance Numbers.
Swarmshop is a relatively new carding forum operating since at least April 2019. It is a mid-sized site for buyers and sellers of stolen card data having more than 12,000 users and over 600,000 payment card records kept for sale.
This is the second time in over a year that it has been the subject of a successful cyber-attack. In January, last year, the site’s records were leaked on another underground site.
It is not sure whether the two incidents were linked in some way. Four site admins, 90 sellers, and 12,250 buyers had their details exposed in the most recent attack.
This is a major reputation hit for the card shop as all the sellers lost their goods and personal data.