馃攳
Dark Web Site Leaks 1 Million Credit Cards - YouTube
Channel: unknown
[0]
hello world a dark web marketplace leaks
[2]
1 million credit card numbers on purpose
[4]
as part of some bizarre marketing
[6]
campaign and apple responds to criticism
[8]
of their newly hatched plan to
[9]
automatically scan the photos on your
[11]
ios devices for illegal material that's
[14]
in today's episode of the week web where
[16]
we break down and dissect
[17]
cybersecurity-related tech news
[19]
[Music]
[22]
a criminal marketplace has intentionally
[24]
leaked one million credit card numbers
[26]
for free that's not one million dollars
[28]
worth of credit cards no they've
[30]
literally published a txt file
[32]
containing one million different
[33]
individual credit cards the perp here or
[35]
world cards is a relatively new illegal
[38]
carding marketplace having launched just
[40]
a few months ago it would seem this leak
[41]
is part of some bizarre marketing
[43]
campaign just like a new coffee brand
[45]
might give out free samples in shopping
[46]
centers this is essentially the same
[48]
thing what better way to attract
[49]
attention in the criminal underworld
[51]
than shower people with a million free
[53]
credit cards the credit cards are
[54]
accompanied with expiration dates cvvs
[57]
names countries states cities addresses
[59]
and so on basically all the information
[61]
and miss greens would need in order to
[62]
commit fraud the marketplace all
[64]
world.cards is so new that the clearnet
[67]
site is still active it even uses
[69]
cloudflare according to who is their
[71]
domain was registered as recently as in
[73]
may this provides an alternative portal
[75]
to their site rather than through their
[76]
dark web link the site quite literally
[78]
sells credit card numbers which have
[80]
likely been plundered via an array of
[82]
means malware hidden in e-commerce sites
[84]
point-of-sale card skimmers phishing
[86]
emails and so on bleeping computer
[88]
reports all worlds sell these cards
[90]
individually for between 30 cents and 14
[93]
assuming an average price of five
[94]
dollars the leaked database is worth a
[96]
staggering 5 million us dollars this
[98]
business model might not make much sense
[100]
why sell credit cards when you can use
[102]
them yourself after all you're going to
[104]
be able to extract much more than just
[106]
14 from a credit card the reason is
[108]
liability cashing out one of these cards
[111]
comes with risk cashing out thousands of
[113]
millions of these cards comes with so
[114]
much risk it's not even worth doing all
[116]
world and other such sites sell this
[118]
risk onto others at a fraction of the
[120]
true value of the card in the footer of
[122]
their website all worlds make it clear
[123]
that all information posted to violate
[125]
the law seemingly poking fun at just how
[127]
ridiculously illegal their website is
[129]
albeit in broken english i explore the
[132]
site a bit whilst researching for this
[133]
video and it's fraught with issues
[136]
firstly i tried searching for uk based
[138]
cards the site returns a long list of
[140]
cards apparently registered in the uk to
[142]
english banks though the attached
[144]
addresses were based in america with
[145]
californian zip codes either this is
[148]
indicative of really badly put together
[150]
fake data or simply a bad database query
[152]
the buy button also didn't work a forum
[155]
posted by all worlds claims just 27 of
[158]
the leaked cards were active however
[160]
they seem to have sold themselves short
[161]
as according to research from d3 labs 50
[164]
of the credit card numbers are currently
[166]
active the concept of stolen credit card
[168]
marketplaces isn't new at all just a few
[171]
months ago the fbi shut down slilp also
[174]
a dark web carding site slilp had been
[176]
active for almost a decade and is said
[178]
to have caused a loss of 200 million us
[180]
dollars to american companies alone the
[182]
emergence of all world just goes to show
[184]
that as soon as one of these sites is
[185]
taken down by the fbi another quickly
[188]
pops up to fill the void in the market
[190]
having leaked a massive 5 million us
[191]
dollars worth of card info for free it's
[194]
clear all world is trying to make it big
[196]
in the cardinal world their goal with
[197]
this massive dump is to attract
[198]
attention and thereby new customers as a
[201]
guest their tactic is working this story
[203]
has been quite widely reported no doubt
[205]
bad actors are scrambling to take
[207]
advantage of what is essentially free
[208]
money however cyber security company d3
[211]
labs has said that after doing their
[212]
analysis they've sent details of the
[214]
card numbers to banks to enable them to
[216]
carry out the appropriate mitigation
[218]
actions before we get to the fallout of
[220]
apple's new controversial image scanning
[222]
i need to tell you about today's sponsor
[224]
lenode vpns are useful and help to keep
[226]
you private and secure but they come
[228]
with a trove of issues mainly would you
[230]
entrust a vpn company with your traffic
[232]
over your isp the bottom line is that if
[234]
you didn't set up a vpn server yourself
[237]
you really can't be sure these vpn
[238]
companies won't keep logs sell your data
[240]
or monitor your traffic that's why i've
[242]
teamed up with lenode to give you the
[244]
opportunity to host your own private vpn
[246]
for free lenode is a totally
[247]
customizable cloud hosting platform with
[249]
a whole host of server apps you can
[251]
install with one click using their wire
[253]
guard or open vpn apps you can spin up a
[256]
private vpn controlled wholly by
[258]
yourself in a matter of minutes lynode
[260]
launched way back in 2003 that's three
[262]
years before aws was even a thing
[264]
lynnode doesn't spend a second on side
[266]
hustles like grocery chains or reading
[268]
your bedtime stories cloud computing is
[270]
what they do best and is their only
[271]
focus lenode is offering all of you guys
[273]
100 in free credit just for signing up
[276]
use your 100 to instantiate your private
[278]
vpn or literally anything else cloud
[281]
computing related they have 24 7 phone
[283]
support which is a godsend in the world
[285]
of servers so you'll never be left out
[286]
in the cold go to
[288]
lenovo.com or click the link in the
[290]
description to claim your free 100
[294]
there has been an overwhelmingly
[295]
negative backlash to apple's newly
[297]
announced plan to scan photos stored on
[298]
your ios devices who could have seen
[300]
this one coming my previous video which
[302]
you should go watch covered apple's new
[304]
initiative in detail but for a quick
[306]
refresher starting next month a new
[308]
feature in an ios update will start
[310]
automatically scanning all the photos
[311]
you upload to icloud for instances of
[314]
abuse images involving children this is
[316]
known as csan material the scans are
[318]
done against a database of known csam
[320]
pictures the process is carried out
[322]
locally on your device rather than
[324]
centrally on apple servers apple claims
[326]
their new system is designed with user
[328]
privacy in mind but a lot of people are
[330]
worried about what this means for
[331]
privacy and truth be told i struggled to
[334]
find anyone in support of the new scheme
[336]
in fact the response was so vehemently
[338]
negative that apple published an faq on
[340]
their new strategy directly addressing
[342]
people's concerns something they rarely
[344]
do imo the most worrisome part of this
[347]
image scanning is could governments
[348]
force apple to add non-csun images to
[351]
the hash list this is something that faq
[353]
answers or at least attempts to the
[355]
fruity corporation says apple will
[357]
refuse such demands they go on to say we
[360]
have faced demands to build and deploy
[362]
government mandated changes that degrade
[363]
the privacy of users before and have
[365]
steadfastly refused those demands not
[367]
sure i agree with apple's claim there
[369]
but before we pick that apart let's put
[371]
our cynicism to one side for just a
[373]
second apple has at least on one
[374]
occasion publicly stood up to law
[376]
enforcement the case that comes to mind
[378]
is that of the san bernardino shooter's
[380]
iphone the fbi wanted apple to create
[382]
special software which would allow them
[384]
to unlock the shooter's iphone 5c apple
[386]
refused not only did apple refuse but
[388]
they took a very public stance
[390]
publishing an open letter to their
[391]
customers the letter explains why
[393]
privacy and encryption is so important
[395]
and that's that what the fbi is asking
[397]
of them in the wrong hands this software
[399]
which does not exist today would have
[401]
the potential to unlock any iphone this
[403]
sounds all well and good the company
[405]
received a lot of praise at the time for
[406]
taking the stance they did but let's put
[408]
our cynical hats back on apple refusing
[411]
to unlock the shooter's iphone was never
[413]
going to have an impact on their bottom
[414]
line it's not like apple's business
[416]
model in the us is contingent on keeping
[418]
the fbi happy in fact what you find is
[420]
that when apple's business model is on
[422]
the line they're more than happy to
[424]
count out to governments and law
[425]
enforcement demands for instance let's
[427]
take everyone's favorite example china
[430]
when china asked apple to remove all vpn
[432]
apps from the chinese app store apple
[434]
did so when china asked apple to store
[436]
all chinese user data in data centers
[439]
effectively owned by the chinese
[440]
communist party apple complied there's a
[443]
long list of concessions apple has made
[445]
to china and i'm not going to list all
[446]
of them here the point is that when it's
[448]
convenient for business purposes apple
[450]
and pretty much most corporations to be
[452]
fair seem to cave into pressure from law
[454]
enforcement assuming the government
[456]
behind them is big enough the
[457]
overarching point is that whilst i don't
[459]
doubts in the presence this technology
[461]
will only be used for detecting csun
[463]
material today's plan isn't necessarily
[465]
tomorrow's plan we don't know what the
[467]
world will look like in the future 10
[469]
years down the road we might be involved
[471]
in some war which could provide
[472]
motivation for western governments to
[474]
increase the scope of surveillance on
[476]
citizens with the technology of the
[477]
likes apple is introducing already
[479]
installed on everyone's devices it's
[481]
quite easy to imagine pressure on apple
[483]
to widen the gamut of materials they
[485]
search for on our phones and who knows
[487]
where that could take us
[489]
i don't believe apple is trying to be
[491]
the bad guy here or that they have some
[492]
kind of evil plan hidden up their sleeve
[494]
i do think on this occasion they are
[496]
acting out of altruism but as they say
[498]
the road to hell is paved with good
[500]
intentions couple that with apple's
[501]
juxtaposing actions on the matter of
[503]
user privacy one second stating privacy
[506]
is a fundamental human right the next
[508]
allegedly signing over decryption keys
[510]
of user data to the chinese government i
[512]
think people are right to at least be a
[513]
little concerned if you enjoy this kind
[515]
of video make sure to help me out by
[517]
tickling the like button of the youtube
[518]
ai as well as turning on those sub
[520]
notifications if you're looking for
[521]
something to watch next go check out my
[523]
previous video which explores how
[525]
apple's new photo scanning system works
[527]
in more detail if you get a lot of value
[529]
from this series of videos do consider
[531]
becoming a channel member as always
[533]
sources will be linked in the video
[534]
description stay tuned for more hacking
[535]
videos and have a good one
Most Recent Videos:
You can go back to the homepage right here: Homepage