Security Affairs
JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|JADEPUFFER: First End-to-End AI-Driven Ransomware Operation|The Anatomy of a Shadow AI Supply-Chain Breach: Lessons from the 2026 Vercel Incident|Law enforcememt operation disrupted Malicious Residential Proxy Networks NetNut|Government and Healthcare Are the Weakest Links in Global Email Security|Europe Confirms Record €4.1B Penalty Against Google for Android Practices|U.S. CISA adds a Microsoft SharePoint Server flaw to its Known Exploited Vulnerabilities catalog|430,000 FortiGate Devices Exposed in FortiBleed Ransomware Link|Adobe fixed multiple maximum-severity flaws in ColdFusion and Campaign Classic|Alleged Scattered Spider Hacker Extradited to U.S. to Face Cybercrime Charges|Oracle E-Business Suite Flaw Under Active Attack, 950 Systems Exposed|Azure CLI Targeted in LSHIY Password Spray Campaign Across 64 Orgs|CISA Warns BlueHammer Flaw Is Now Exploited in Ransomware Attacks|
Advertisement

Ad Placeholder

Full Width × 90

Breaking News

Sh0ping.su hacked, stolen card data and accounts available for sale

The notorious crime forum Sh0ping[.]su has been hacked by unknowns that leaked online credit card data and stolen accounts. Data breaches are a common problem also for bad actors, in many cases cyber criminals hack websites of competitors to damage their reputation and push out them from the business. Recently we discussed the hacks of […]

Sh0ping.su hacked, stolen card data and accounts available for sale

The notorious crime forum Sh0ping[.]su has been hacked by unknowns that leaked online credit card data and stolen accounts.

Data breaches are a common problem also for bad actors, in many cases cyber criminals hack websites of competitors to damage their reputation and push out them from the business.

Recently we discussed the hacks of nulled.io and Besa Mafia illegal services that caused serious damage to their business, and news of the day is that ShOping[.]su suffered a major data breach.

The latest one is ShOping[.]su, also known as ShOping.net, is a crime forum in the darknet where criminals buy and sell stolen payment card data and stolen accounts.

Unknowns hacked the ShOping[.]su service by stealing thousands of accounts and offering them for sale online. The hackers claim to have stolen data belonging to more than 16,000 ShOping[.]su registered accounts, they also claim the availability of 15,000 user accounts stolen from other sites that were stored on the same server and around 9000 credit card data.

The data breach was discovered by the Hacked-DB company that reported it to the colleagues at the HackRead alongside with a detailed report that confirms the presence of 16,566 user accounts in the leaked data.

“The dumped data contains 16,566 user accounts with email addresses and their encrypted passwords, 9,000 accounts from platforms like Uber, cPanel, WebMail, GoDaddy, Twitter, PayPal, Amazon and more. (The 9,000 accounts were available on ShOping[.]su for sale.)” reported HackRead.

After the alleged data breach the ShOping[.]su platform went down for more than one day, now it is again up.

sh0ping-su-data dump

The leaked data contain personal and credit card data of 5,000 users including ID card numbers, social security numbers, credit card numbers, CVV codes, zip code, users’ date of births, name or the state and city, type of card, phone numbers, usernames, email addresses, price and date of purchased.

“Hacked-DB has detected a data breach on ShOping[.]su website. The leaked data contains user account information and full credit card details, credit number, CVV, expiration date, holder name, credit type etc. the website was down for maintenance after the data breach but now it is back online,” reported a Hacked-DB spokesman.

Stay tuned …

[adrotate banner=”9″]

Pierluigi Paganini

(Security Affairs – ShOping[.]su, data breach)