Thursday, October 12, 2017

Carding Shop in Possession of Stolen Credit Cards

The administrator of a dark web carding shop may be in possession of stolen credit cards from the recent Sonic breach, and is advertising carding services on numerous carding forums. On 28 September 2017, the shop posted a dump of five million credit cards - mostly US. Analysts believe with moderate confidence that all the data from this dump may be from the recent Sonic breach, and two unknown buyers (high confidence) recently purchased some of these cards. Wapack Labs believes with moderate confidence that the administrator may not be the culprit of the breach, but is the seller of the stolen information. This is due to a feature that allows members to sell stolen cards to the shop. Wapack Labs will continue to monitor the forum and persona to identify the threat actor...READ MORE

Wapack Labs has cataloged and reported carding shops and stolen credit card dumps in the past. An archive of related reporting can be found in the Red Sky Alliance portal.

WWW.WAPACKLABS.COM