The card details were previously stolen from online sites and brick-and-mortar stores of retailers as far back as 2015.
KrebsOnSecurity reported last month that a source shared a plain text file containing what claimed to be the full database of cards for sale, including all cards currently and previously on the site. The data hacked out of BriansClub cvv has been shared with the financial institutions that identify, monitor, or reissue compromised cards that show up for sale on criminal forums. BriansClub mostly resells cards stolen by other threat actors known as resellers or affiliates; both BriansClub and its resellers earn a certain percentage from each sale.
In 2015, Briandump ru added 1.7 million card records for sale. In 2016, BriansClub legit uploaded 2.89 million stolen cards. 2017 saw some 4.9 million cards added, and in 2018, there were 9.2 million more. Between January and August 2019, BriansClubcc added a staggering number of 7.6 million cards. The security intelligence firm Flashpoint estimates that the website had close to $414 million worth of stolen credit cards for sale.
The reports say that data hacked from BriansClub carding is strings of zeroes and ones that can be encoded onto anything with a magnetic strip the size of a credit card, which can then be used to make purchases.