Home / Crime and Justice / Forex Card Chaos: Thousands Defrauded in Data Breach
Forex Card Chaos: Thousands Defrauded in Data Breach
25 Feb
Summary
- Thousands of users reportedly defrauded following a significant data breach.
- Unauthorized transactions in US dollars and Brazilian real reported by customers.
- Hackers likely accessed card numbers, expiry dates, and CVVs for fraudulent use.
BookMyForex, an online foreign exchange marketplace owned by MakeMyTrip, has experienced a major data breach impacting numerous users.
Thousands of customers have allegedly been defrauded, reporting unauthorized transactions in US dollars and Brazilian real. Many affected users also faced difficulties accessing the platform to lock their forex cards, exacerbating the situation.
The breach appears to have exposed sensitive customer data, including card numbers, expiry dates, and CVVs. Cyber attackers likely used this information to carry out international online transactions, bypassing the need for physical card possession.
Investigations suggest hackers exfiltrated card details from a compromised database or third-party system. They reportedly began with small test transactions to validate card details before executing higher-value purchases, with a notable volume occurring in Brazilian real, possibly to exploit less monitored channels and weaker merchant KYC controls.
