A dark website called BidenCash has posted information about more than 1.2 million credit cards online. According to a report by BleepingComputer, the leak included information such as card numbers, expiration dates, CVV numbers, cardholder names, bank names, card types, physical addresses, email addresses, social security numbers, and phone numbers. This information is enough for cybercriminals to commit financial fraud and identity theft.

Most postcards came from the United States, others from India, Brazil, Great Britain, Mexico, Australia, Spain, and China. Some cards will not expire until 2023, while others will remain valid until 2026.

The leak appears to be the introduction of new store domains after BidenCash’s first stores suffered a distributed denial of service (DDoS) attack. To gain wider reach, the cybercriminals distributed the URLs through public web domains and various hacking forums.

Dark Web credit card dumps like this one are often scams, as others only contain fake data or recycled data from old dumps packaged under a new name. However, cybersecurity firm D3Labs has confirmed that about 30% of credit cards are up-to-date, meaning around 350,000 cards can be valid. To protect your credit card from hackers, always verify the authenticity of the website where you entered your card information. Also, when you see any suspicious transaction, contact your bank immediately and have them block your card.