Skip to main content

Hackers stole 26 million credit cards, but vigilantes just rescued them

In an ironic twist of fate, BriansClub, a black market site that contains stolen credit cards, was hacked to rescue the data of more than 26 million credit and debit cards. 

KrebsOnSecurity reports that the data stolen in August from the site, which goes by the name BriansClub[.]at was shared with financial institutions who were able to identify, monitor, and reissue cards that were compromised. 

The card information was obtained by hacking online and brick-and-mortar retailers over four years. In 2019 alone, about 8 million records were uploaded to the site. Additional data obtained from the hack shows that BriansClub took 1.7 million cards in 2015, 2.9 million in 2016, 4.9 million in 2017, and 9.2 million in 2018. All in all, the security intelligence firm Flashpoint estimates that the site had approximately $414 million worth of stolen credit cards for sale. 

Flashpoint said that the site sold a total of 9.1 million of these stolen credit cards, earning themselves $126 million in Bitcoin in the process. Fourteen million of the 26 million cards obtained by the hack may be still valid. 

While most hacks negatively impact people and compromise personal information, hacks like this result in justice served. 

Allison Nixon, the director of security research at Flashpoint, told Brian Krebs of KrebsOnSecurity, “When people talk about ‘hacking back,’ they’re talking about stuff like this. “As long as our government is hacking into all these foreign government resources, they should be hacking into these carding sites as well. There’s a lot of attention being paid to this data now and people are remediating and working on it.”

Still, hacking negatively impacts people more than anything. In 2019 alone, there have been quite a few large hacks of well-known companies and apps. These include Sprint, Words with Friends, NASA, Capital One, and even Twitter. 

Perhaps the most serious hack in history was the Equifax breach of 2017. The data loss exposed the sensitive financial data of more than 145 million consumers in the U.S., and several million in the U.K. as well. Its effects also reverberated beyond the intrusion proper to impact U.S. consumers with records held by Equifax competitor TransUnion.

Editors' Recommendations

Allison Matyus
Former Digital Trends Contributor
Allison Matyus is a general news reporter at Digital Trends. She covers any and all tech news, including issues around social…
500px reveals almost 15 million users are caught up in security breach
photo portfolio services photographer

Online photography community 500px told its members on Tuesday, February 12, that their data may have been stolen in a security breach and warned them to change their password.

In a statement, the portfolio website for photographers said an unauthorized party gained access to its systems on or around July 5, 2018. However, the breach was only discovered by its engineers on February 8, 2019.

Read more
A flaw in e-ticket systems could mean a hacker can print your boarding pass
climate change could affect turbulence airplane alaska airlines

Security researchers at the firm Wandera have exposed a vulnerability in the e-ticking system used by several popular global airlines. The vulnerability was discovered in December and involves unsecured check-in emails that can put the personal information of passengers at risk or even allow a hacker to print boarding passes.

Though there is no evidence that currently supports a major data breach, eight airlines including Southwest, Air France, KLM, Vueling, Jetstar, Thomas Cook, Transavia, and Air Europa are impacted by this vulnerability. According to Wandera, these airliners are sending unencrypted check-in links, which otherwise automatically log passengers into a website to check flight status and print boarding passes. That can allow a hacker who is sharing the same Wi-Fi network as a passenger to intercept the link and gain access to the same information.

Read more
Amazon expands Fresh grocery delivery for non-Prime members
A person delivery an Amazon Fresh order to a customer's home.

Amazon is expanding its Fresh grocery deliveries to non-Prime members nationwide.

The company started offering the service to non-Prime members in 12 cities in August, but on Thursday, Amazon said it was expanding to locations across the country.

Read more