Category | Details |
---|---|
Threat Actors | – Cybercriminals using BidenCash dark web marketplace |
Campaign Overview | – BidenCash launched in 2022, a dark web marketplace selling stolen credit card data, PII, and SSH credentials – Prominent promotional campaigns involving data dumps to attract users and expand market reach – Leaks have included millions of credit card details and personal data from 2022 to 2023 |
Target Regions (Victims) | – Global victims of credit card fraud and data breaches |
Methodology | – Stolen data (credit cards, PII, SSH credentials) sold via an easy-to-navigate dark web interface – Data dumps for promotional purposes, offering stolen data for free to attract new users – Uses buyer protection, automated purchases, and exclusive data for users |
Product Targeted | – Stolen credit card information, Personally Identifiable Information (PII), SSH credentials |
Malware Reference | – Not directly referenced, but supports tools for cybercrime (e.g., SSH credentials, fraud-related data) |
Tools Used | – Dark web interface for trading data – Promotional data dumps (June 2022, October 2022, February 2023, etc.) |
Vulnerabilities Exploited | – Exposes personal and financial information through data breaches and compromised credentials |
TTPs | – Initial Access: Stolen data (credit cards, SSH credentials, PII) – Exfiltration: Data dumps and automated purchases (T1041) – Monetization: Selling stolen data and compromised credentials – Persistence: Promotes buyer protection and exclusive stolen data to maintain operational reach |
Attribution | – Cybercriminal marketplace, no specific attribution to organized threat groups |
Recommendations | – Implement strong dark web monitoring and fraud detection systems – Enforce robust cybersecurity protocols to prevent data breaches – Leverage platforms like SOCRadar to monitor for compromised credentials |
Source | SOCRadar |
Read full article: https://socradar.io/dark-web-market-bidencash/
The above summary has been generated by an AI language model
Leave a Reply