U.S. law enforcement has delivered a major blow to cybercrime with the takedown of BidenCash, a notorious dark web marketplace accused of trafficking in stolen financial data. Prosecutors announced the seizure of 145 domain names and an undisclosed amount of cryptocurrency directly tied to the site.
Launched in March 2022, BidenCash served as a centralized hub for buying and selling stolen credit card data, login credentials, and remote server access. The platform built a massive user base of over 117,000 individuals and reportedly facilitated more than 15 million illicit transactions, generating over $17 million in revenue during its two-year operation.
The U.S. Attorney’s Office for the Eastern District of Virginia confirmed the action in a statement on Wednesday, emphasizing the scale of the operation and growing collaboration among international law enforcement agencies focused on digital crime.
This seizure ranks among the largest dark web enforcement actions in recent memory and signals a renewed crackdown on crypto-linked financial fraud.
Seized Domains Now Redirect to Law Enforcement Servers
As part of the operation, authorities confirmed that all 145 BidenCash-related domains have been permanently deactivated and now redirect to law enforcement-controlled servers. This effectively cuts off access to the marketplace and halts any further transactions.
The Department of Justice also obtained court authorization to confiscate cryptocurrency linked to the platform. This includes digital wallets believed to hold profits from the sale of stolen financial data and compromised system credentials.
Authorities described the site as functioning like a commercial service, earning revenue by charging transaction fees on each illegal trade. This structure allowed BidenCash to operate like a shadowy fintech platform—blurring the line between cybercrime and business.
BidenCash Offered Free Card Dumps to Attract Users
In an effort to boost its credibility among cybercriminals and expand its user base, BidenCash engaged in aggressive promotional tactics—publishing millions of stolen credit card records for free.
Between October 2022 and February 2023, the site released more than 3.3 million compromised records, exposing card numbers, CVVs, full names, email addresses, and mailing data. These “giveaways” were often timed to coincide with DDoS attacks that temporarily knocked the platform offline, according to cybersecurity firm SOCRadar.
The public dumps were intended to signal the site’s resilience and attract more illicit traders by offering immediate value, regardless of platform stability.
BidenCash’s dismantling follows a broader trend of dark web enforcement. Just last month, Operation RapTor—a global crackdown—led to 270 arrests, the seizure of $200 million in assets, and the shutdown of several drug-related darknet markets, highlighting the international scale of crypto-enabled cybercrime.
Quick Facts
- BidenCash was a dark web marketplace for stolen credit card and personal data.
- Operated from March 2022 to 2024, with over 15 million illegal transactions.
- Authorities seized 145 domains and linked cryptocurrency assets.
- The platform distributed over 3.3 million stolen cards in promotional “giveaways.”
- Follows the recent Operation RapTor crackdown on global darknet activity.