Carding
The theft and fraudulent use of payment card information, typically obtained from data breaches.
Full Definition
Carding refers to the trafficking and fraudulent use of stolen payment card data. This ecosystem includes the theft of card details through data breaches, skimming devices, and phishing — followed by the buying, selling, and exploitation of that data on dark web marketplaces known as "carding forums" or "carding shops."\n\nStolen card data is typically bundled as "dumps" (magnetic stripe data) or "fullz" (full card details plus personally identifiable information). Carders test cards through small transactions before making larger fraudulent purchases or reselling verified cards.\n\nProfessional threat intelligence operations monitor carding forums to detect when an organization's customers or employees have had financial data compromised, enabling rapid response and card cancellation before significant fraud occurs.
Related Terms
Dark Web
Encrypted, anonymized parts of the internet accessible only via specialized tools like Tor, used by both privacy advocates and cybercriminals.
Security ConceptsData Breach
A security incident in which protected or confidential data is accessed, stolen, or disclosed without authorization.
Data & LeaksThreat Actor
Any individual or group that carries out or has the intent to carry out malicious cyber activities.
Threat ActorsCombo List
A compiled file of username/email and password pairs aggregated from multiple data breaches.
Data & LeaksMonitor Your Exposure on Whiteintel
Understanding threats is the first step. Whiteintel continuously monitors dark web sources, stealer logs, and breach databases so you know the moment your organization's data is at risk.