BidenCash cybercrime market seized by international authorities; 145 domains linked to stolen bank card gross sales taken offline in a significant crackdown.
In main information from the cybercrime world, BidenCash, one of many web’s most infamous marketplaces for stolen bank card information, has been seized and brought offline in a coordinated legislation enforcement operation involving U.S. and Dutch authorities.
The takedown, formally confirmed on June 4, 2025, concerned the seizure of 145 domains linked to the market. Guests to the once-active URLs now land on a seizure banner posted by the US Division of Justice, FBI, U.S. Secret Service, and Dutch Nationwide Police, saying the top of BidenCash’s on-line presence, not less than for now.
A Market Constructed on Chaos
Launched in March 2022, BidenCash shortly made a reputation for itself in cybercrime circles by doing what most darkish internet marketplaces prevented: working within the open. The platform didn’t require a Tor browser for entry and was listed on the floor internet, an intentional technique to maximise visitors and lure low-skilled cybercriminals.
However what set BidenCash aside was its aggressive self-promotion on a number of events wherein the positioning’s directors leaked tens of millions of stolen bank card numbers without cost, as a part of advertising and marketing campaigns designed to attract in new customers.
As reported by Hackread.com in March 2023, BidenCash leaked over two million legitimate bank cards as a part of its birthday anniversary promotion, most of those playing cards belonged to customers in the USA, China, Mexico, India, Canada, and the UK.
In December 2023, {the marketplace} directors leaked 1.6 million bank card particulars in plaintext. Most not too long ago in April 2025, BidenCash leaked 1 million fee card numbers together with their CVVs, and expiry dates.
Authorities say that over its three-year run, the positioning had greater than 117,000 registered customers and facilitated the sale of over 15 million fee card information, producing an estimated $17 million in illicit income.
What Was Seized?
Based on US DoJ’s press launch, the operation resulted within the seizure of 145 darkish internet and clear internet domains, cryptocurrency wallets and belongings and disruption of “important infrastructure” supporting {the marketplace}. Authorities have already begun engaged on figuring out and arresting directors and associates.
Listed here are the seized darkish internet and clear internet domains utilized by BidenCash. The darkish internet domains now redirect customers to Bidencash.usssdomainseizure.com with the identical takedown discover:
https://bidencash.bid
https://bidencash.asia
http://biden3veilozweo2xubiusixn4kbfbbih23s6xsd35bzsuaz2weiz4yd.onion
http://biden3veilozweo2xubiusixn4kbfbbih23s6xsd35bzsuaz2weiz4yd.onion
http://bidencjap2u4hmzh3vtqsyqc54uevcariczl56y7jah4lgof4xzxb5qd.onion
http://bidencjap2u4hmzh3vtqsyqc54uevcariczl56y7jah4lgof4xzxb5qd.onion
The worldwide takedown additionally had non-public sector help from cybersecurity organizations together with Searchlight Cyber and The Shadowserver Basis, who helped legislation enforcement map out BidenCash’s infrastructure and exercise over time.
BidenCash Victims Stay Susceptible
Whereas the takedown is a win for cybersecurity, the influence received’t be rapid for victims. Most of the cardholders whose information was offered or dumped on BidenCash are doubtless nonetheless weak, particularly in the event that they haven’t modified their banking particulars or been notified of publicity.
It’s suggested that customers and companies monitor their accounts intently, use two-factor authentication, and freeze credit score if doable, significantly if they believe any prior compromise.
What Comes Subsequent?
BidenCash could also be gone, however its customers, and its mannequin, are usually not. For now, the BidenCash seizure reveals that cybercrime isn’t invisible. And for a market that gained consideration with public information dumps, its finish got here simply as publicly with victims having the final chuckle.
