In three days, more than 100,000 card details were leaked on the darknet in the payment card fraud market. An unknown English-speaking user sold data on the forum, but the ad was soon removed due to the ban on “working with RU”.
Since February 26, scammers have been trying to massively steal funds even from blocked cards: they tried to urgently monetize databases until they lost their value, Kommersant reported.
According to Vadim Solovyov, head of the Positive Technologie information security threat analysis group, the leaked information does not pose a threat as a whole, since the attackers receive only information about the name of the card holder, as well as which bank issued it. However, scammers can use them to make calls from “call centers” or send personalized ads, the expert concluded.
Bankers “taking into account recent events” and massive DDoS attacks are already working “on high alert” and “control their perimeter,” Kirill Orlov, deputy head of information security at Oxygen, said.
On February 24, Russian President Vladimir Putin announced the start of a special military operation in Ukraine. After that, the US and other countries imposed “blocking” sanctions against VTB, Sovcombank, Novikombank, Otkritie Bank, Promsvyazbank, Rossiya Bank. It is no longer possible to pay with cards of international payment systems of these credit organizations abroad; already issued cards will work in Russia.
In early March, Visa expressed its readiness to comply with all sanctions that would be imposed against Russia. Mastercard also announced the implementation of the sanctions.
