Prvtzone[.]ws is a clear web marketplace and forum. The marketplace primarily sells stolen credit cards. In this forum, members (vendors and buyers) discuss the website purpose regarding stolen information. One seller, BuyBaseFactory (BBF), sells cards and stolen CC/CVV and dumps track 1 (TR1) and track 2 (TR2)[1] from the US, Europe, parts of South America and Africa. This is a reminder to all Small Business Alliance members to be prudent with providing company or personal credit card information in any on-line service or through suspicious point of sale devices.
Method
BuyBaseFactory’s original post was dated on 10 May 2018 and as of 9 July 2018 many customers have remained very active with this malicious credit card dealer. Users create a free account to access the Prvtzone forum and then are permitted to share fraud methods and, or shop in this marketplace. Their shop contains various vendors selling a variety of products. BBF includes a few other personal websites which operate a carding and dumping business. BBF does not include his TOR site through Prytzone, but does include a Jabber connection: bbf@ jabb.im / buybasefactory@ exploit[.]im This enables direct communication to purchase and share stolen credit card information.
An additional sales site included is, "buybasefactory.com." An ICQ number is included which is, ICQ Number - 890-820. This website provides a free account to access it, then requires an upfront fee of $10 to continue. This fee is said to be used toward any purchase you make. The seller utilizes cryptocurrency methods to conduct sales.
General delivery
Users may contact BBF from other underground private sites to negotiate prices on credit card dumps, CVV and other financial information. BBF uses Bitcoin as his main sales currency. Discounts are offered for major discounts on the cards and dumps he sells. This demonstrates a higher level of marketing sophistication.
Meta-Data
- Market Place URL = prvtzone.ws
- Forum URL = https://prvtzone.ws/threads/buybasefactory.8079/#post-35075
Conclusion
BuyBaseFactory is a threat actor on the open source website Prvtzone and sells credit card dumps, stolen cards and other CVV's to registered users who provide free accounts to access Prytzone. BBF sells stolen cards and dumps through private underground websites. Bitcoin is the main source of payment for customers. Though Prytzone has been reported in the past, it remains active for selling and sharing of stolen credit card information.[2]
[1] Claims of new and “fresh” stolen credit cards
[2] https://krebsonsecurity.com/2016/05/carding-sites-turn-to-the-dark-cloud/
Comments