Payment card details, often stored on e-commerce platforms, holiday booking websites, and online retailers, are increasingly becoming targets for cybercriminals. When these sensitive details are accessed and stolen, it can lead to significant financial damage for individuals and businesses alike. A particularly alarming trend is the increasing frequency with which stolen payment card details are being sold on the dark web.
Surprisingly, a large percentage of these compromised card details are tied to account holders from the UK, making British online shoppers prime targets for cyber theft.
What’s particularly eye-opening is the low price at which these stolen cards are often traded. On average, fraudsters pay as little as £60 for bundles of 10 stolen cards, including both debit and credit cards. This price point seems shockingly low, especially considering the potential harm these stolen details can cause.
Why Are Stolen Cards So Cheap?
Security analysts point out that the price of stolen debit and credit card details is dropping due to a combination of factors. One key factor is the supply and demand dynamics of the dark web marketplace. When a large volume of stolen data is available, the cost per card decreases significantly. Essentially, the more card details that are in circulation, the less valuable each individual piece of information becomes.
Another important element is the authenticity of the card details. Card information that can be verified and used without triggering fraud alerts is much more valuable, so lower-quality or outdated data may be sold for even less.
Top 10 Countries with the Most Stolen Cards in 2025
In 2025, certain countries are disproportionately affected by card theft. The following list outlines the top 10 countries with the most stolen card details, based on data circulating on the dark web:
1.) United States: As expected, the U.S. leads the pack with over 30,000 stolen card details, which are currently available for sale on the dark web. Given the high volume of online shopping in the U.S., it’s no surprise that American payment card data is highly sought after by hackers.
2.) Singapore: In second place, Singapore has seen over 5,400 stolen card details. Despite its relatively small population, Singapore is a target due to its high number of affluent consumers and widespread use of digital payments.
3.) Spain: With over 5,090 stolen card details, Spain comes in third. The increasing use of online shopping in Spain has made it a ripe target for cybercriminals.
4.) United Kingdom: The UK ranks fourth, with around 1,804 card details stolen. British shoppers have long been a target of cyber thieves, and the widespread adoption of online banking and e-commerce has made these details valuable.
5.) Kuwait: Stolen card details from Kuwait total 1,518. The relatively small number of affected cards in Kuwait might be due to the country’s smaller population, but its wealth and high internet usage make it an attractive target.
6.) France: With 722 stolen card details, France has also seen a rise in cybercrime targeting its citizens’ payment information.
7.) Ireland: The number of stolen cards from Ireland stands at 589, reflecting the growing vulnerability of consumers in the country.
8.) Canada: Canada has seen 442 card details stolen. The relatively low number could suggest that Canadian cybercriminals are targeting specific demographics or industries.
9.) Germany: In Germany, there are 408 stolen card details being circulated on the dark web, illustrating the growing scope of digital fraud in the European region.
10.) Cyprus: Rounding out the list is Cyprus with 326 stolen card details. As a smaller country, Cyprus faces relatively fewer incidents but still remains vulnerable to data theft.
The Price of Stolen Cards: Japan vs. Other Countries
Interestingly, some countries’ stolen card details fetch higher prices due to their perceived value on the dark web. For instance, information about payment cards from Japanese consumers is particularly valuable, often fetching more than £23 per card. This premium is likely because Japanese banks have stringent security measures, making stolen data harder to come by but highly sought after.
How Long Do Stolen Card Details Stay Valid?
A particularly concerning aspect of this phenomenon is the longevity of stolen card details. Research suggests that over 87% of stolen payment card details remain valid for a period of 12 to 16 months. During this time, fraudsters can continue to make unauthorized purchases using the compromised information. Common transactions include online shopping, booking hotel rooms, and purchasing airline tickets, often in countries with less stringent financial regulations or developing economies, such as Vietnam, South America, Jamaica, and Sri Lanka.
This long window of opportunity allows cybercriminals to exploit stolen card details for months without detection, making it harder for victims to trace and reverse fraudulent transactions.
How to Protect Yourself from Payment Card Fraud
Given the rising tide of cybercrime, it’s crucial for consumers to take proactive measures to protect their payment card information. Here are some key steps to safeguard your financial data:
i) Regularly Monitor Bank Statements: Keeping an eye on your bank and credit card statements can help you catch any suspicious transactions early. Set up alerts to receive notifications of any unusual activity.
ii) Use Strong Passwords: Strong, unique passwords (preferably 14-18 characters long) can make it harder for hackers to gain access to your online accounts. Avoid using easily guessed passwords or reusing the same one across multiple sites.
iii) Disable Browser Password Saving: While it may seem convenient, allowing your browser to store passwords can be risky. Avoid this practice and consider using a password manager for safer storage.
iV) Enable Multi-Factor Authentication (MFA): MFA adds an extra layer of security by requiring more than just a password to complete a transaction. Whether it’s through a one-time code sent to your phone or an app-generated token, MFA can significantly reduce the risk of fraud.
By staying vigilant and adopting good security practices, consumers can reduce their chances of falling victim to card fraud and help protect their financial information from being exploited on the dark web.
Join our LinkedIn group Information Security Community!
