one of the biggest underground stores that sell stolen credit card information, is also hacked. The information stolen from BriansClub includes nearly 26 million debit and credit card data retrieved from hacked brick-and-mortar and online retailers in the last four years. This includes nearly 8 million records uploaded to the site in the year 2019 alone. briansclub
In the last month, KrebsOnSecurity was contacted by an individual who had provided a plain text document with what was believed to be the entire catalog of cards that are available in the present and past through BriansClubat. at, a popular scam bazaar named after the author. Imitating my website, appearance and even the name BriansClub even boasts of the copyright, with a reference to the bottom of each web page that reads: "(c) 2019 Crabs on Security."
Many people who viewed the database provided by my source have confirmed that the exact credit card information can be located in a different form simply by browsing the BriansClub website with a validand properly funded account.
The data on the cards taken from BriansClub has been shared various sources that work with financial institutions to detect and monitor or reissue card which are advertised for sale on online criminal markets.
The data leaked shows how in the 2015 year, BriansClub had just 1.7 million card data records to sell. However, business would grow throughout the following years in 2016. BriansClub posted 2.89 million cards stolen; in 2017, the addition of 4.9 million cards added. 2018 saw 9.2 million .
From January to August of 2019 (when that database image was made), BriansClub added roughly 7.6 million cards.
The majority of the items available at BriansClub is "dumps," strings of zeros and ones thatwhen encoded onto any object that has a magnetic stripe similar to credit cards -- could be used by thieves to buy electronic devices, gift cards, as well as other items that are expensive at large box stores.
As is evident in the following table (taken from a variety of federal hacking cases that involve stolen credit cards are used to for the purposes of sentencing value each record of stolen cards as in order to be a representation of the loss per victimized card.
There's no method to determine what percentage of approximately 26 million cards on sale at BriansClub are in use, however the best estimation of the number of un-sold cards with expiration dates that will be in the near future suggests that the more than 14 million may still be valid. briansclub
The archive also shows that who the proprietor(s) of BriansClub regularly uploading new cards stolen from the vault with a few couple of thousand records as well as hundreds of thousands.
This is because, like other card-based websites, BriansClub mostly resells cards that are stolen by cybercriminalscalled affiliates or resellers who make a profit from every sale. It's unclear which percentage is split in this particular instance however, it is possible that this information will be revealed during future analysis of the stolen database.
In a message that reads "Your site has been compromised," BriansClub asked for a response from BriansClub through their "Support Tickets" page on the site of the carding company and informing the operators that all their data on cards was transferred to the banks that issue cards.
