Warning about 600,000 bank card details leaked online

Warning about 600,000 bank card details leaked online

A new report from cybersecurity firm NordVPN warns that thousands of credit card details are being leaked online, with the majority of stolen payment card details offering a big bonus to cybercriminals.

Malware is used to steal data and it is then sold online for use by criminals.

More than 600,000 credit cards worldwide have been compromised and their information leaked onto the dark web after falling victim to malware attacks, a new report from cybersecurity experts NordVPN reveals. Adrianus Warmenhoven, Cybersecurity Advisor at NordVPN, commented: “The malware didn’t just steal victims’ payment card information. Most of the stolen payment card information came with a big bonus for the cybercriminals: users’ autofill information and account credentials.”

“This additional information opens the door to an even wider range of attacks, including identity theft, online blackmail and cyber extortion.”




The alarming results of the study indicate that up to 99% of stolen cards were accompanied by additional data such as names, computer files and saved login information. Malware is increasingly offered on a subscription basis, similar to legitimate software services, giving criminals a toolkit to steal information for a fee.

“Malware is often used as a ‘weapon of mass infection’ because its results can spread on a large scale, even for relatively unskilled people. Payment card thieves are not ‘cybercriminals’ in the first place, they are criminals who have found a new tool to do what they would have done anyway,” Warmenhoven explained.

Bank details are often accompanied by other personal information and login credentials.

“The malware didn’t just steal victims’ payment card details. Most of the stolen payment card details came with a big bonus for the cybercriminals: users’ autofill details and account credentials,” Birmingham Live reports.

“This additional information opens the door to an even broader range of attacks, including identity theft, online blackmail and extortion on the Internet. Malware is often used as a “weapon of mass infection” because its results can spread widely, even to relatively unskilled people. Payment card thieves are not “cybercriminals” in the first place, they are criminals who have found a new tool to do what they would have done anyway,” Warmenhoven said.

Malware as a service is now surprisingly affordable, with dark web marketplaces offering it for as little as £80-£120 per month. These malware vendors don’t just sell their wares: they also offer extensive support, including user guides and dedicated forums where beginners can learn the ropes.

The study found that 60% of stolen payment cards were recovered using the clever RedLine information stealer. Warmenhoven warns: “RedLine is a significant threat due to its affordability, effectiveness, and accessibility. It is easily deployed through social engineering and constantly adapts to evade detection. It is supported by dedicated Telegram channels, making it particularly dangerous and accessible to novice cybercriminals.”