Security & Fraud

Hackers Sell 1M Consumers' Bank Details On Open Internet

A pretty significant criminal enterprise is taking place online, and those behind the operation aren't being particularly shy about it.

On Saturday (Feb. 13), The Times in the U.K. reported that information from more than 1 million stolen debit and credit cards worldwide — including those belonging to 100,000 Britons — is being sold on the open Internet (rather than on the harder-to-access "Dark Web," where the fruits of fraudulent activities of similar magnitude are more commonly traded).

For as little as £1.67 (or $2.42), the outlet discovered (and whose investigation was subsequently shared by The Telegraph), the stolen banking details of any one of the million-plus victims can be purchased on a site called, which appears to have been in operation since June 2015.

The Telegraph shares The Times' findings that the site puts forth the appearances of a standard online retailer — including features like customer assistance and offering refunds for ineffective products — while selling the personal information of others, such as mother's maiden name (which the outlet notes is commonly required security information in online banking transactions).

A Times reporter was granted permission from one of the alleged victims of to purchase her stolen information, which the reporter was able to do with bitcoin. In return for payment, the reporter was given a package that included the victim’s debit card number (including its security code and expiration date), mobile phone number and physical address.

The woman commented to the outlet: "I don't feel like the police are able to protect anyone from online fraud. If they were, these types of sites would not exist in the first place."

Keith Vaz, chairman of the home affairs select committee, expressed to The Times his shock that the site — which he fears could be funding terrorism and organized crime — was being allowed to conduct its illicit business in such an open manner.

"The National Crime Agency must act immediately to get this site closed. I will be writing to the NCA to bring this issue to their attention,” he commented.



The September 2020 Leveraging The Digital Banking Shift Study, PYMNTS examines consumers’ growing use of online and mobile tools to open and manage accounts as well as the factors that are paramount in building and maintaining trust in the current economic environment. The report is based on a survey of nearly 2,200 account-holding U.S. consumers.