Dark Web Danger: 2.3 Million Bank Cards Exposed in Massive Data Leak
A shocking analysis by Kaspersky Digital Footprint, Kaspersky analysis Intelligence has revealed that approximately 2.3 million bank cards were leaked on the dark web. This alarming discovery is based on examining log files from data-stealing malware infections between 2023 and 2024. The report, released during the tech industry’s gathering at MWC 2025 in Barcelona, highlights the growing threat of infostealers and their devastating impact on global cybersecurity.
Infostealers on the Rise: How Malware is Stealing Your Financial Data
Infostealers, malicious programs designed to harvest sensitive information, have compromised nearly 26 million devices globally, with over 9 million infections recorded in 2024 alone. On average, one in every 14 infostealer infections results in the theft of credit card details. While the global percentage of leaked cards remains below 1%, 95% of the exposed data appears to be technically valid, posing significant risks to victims.
These malware variants don’t just target financial data—they also collect login credentials, cookies, and other valuable user information. The stolen data is compiled into log files and traded within dark web communities, creating a thriving underground market for cybercriminals.
From Phishing to Dark Web: How Cybercriminals Infect Devices
Infostealers typically infect devices when users unknowingly download malicious files, often disguised as legitimate software like game cheats, software cracks, or key generators. They spread through phishing links, compromised websites, malicious email attachments, and messaging platforms. Both personal and corporate devices are at risk, making these threats a widespread concern.
Kaspersky experts estimate that between 20 million and 25 million devices were infected with info stealers in 2024, with 2023 figures ranging between 18 million and 22 million. Sergey Shcherbel, an expert at Kaspersky Digital Footprint Intelligence, warns that the actual number of infected devices could be even higher, as stolen data often surfaces on the dark web months or even years after the initial infection.
Redline, Risepro, and Stealc: The Most Dangerous Infostealers of 2024
In 2024, Redline remained the most widespread infostealer, accounting for 34% of total infections. However, Risepro emerged as a significant threat, with its share of infections skyrocketing from 1.4% in 2023 to nearly 23% in 2024. This stealer primarily targets banking card details, passwords, and cryptocurrency wallet data, often spreading under the guise of key generators or game mods.
Another rapidly growing threat is Stealc, which first appeared in 2023 and saw its share of infections rise from 3% to 13% in 2024. These stealers are becoming increasingly sophisticated, making them harder to detect and combat.
Protect Yourself: How to Mitigate Risks from Infostealer Attacks
In light of the growing infostealer threat, Kaspersky has launched a dedicated landing page to raise awareness and provide strategies for mitigating risks. To protect yourself, avoid downloading suspicious files, use strong and unique passwords, enable two-factor authentication, and keep your software updated. Regularly monitor your financial accounts for unusual activity and consider using reliable cybersecurity solutions to safeguard your devices.
The rise of infostealers underscores the importance of staying vigilant in an increasingly digital world. By taking proactive steps, you can reduce your risk of falling victim to these dangerous cyber threats.
Do Leave your Comments.