Security News > 2020 > January > Wawa Breach May Have Compromised More Than 30 Million Payment Cards
Now, fraud experts say the first batch of card data stolen from Wawa customers is being sold at one of the underground's most popular crime shops, which claims to have 30 million records to peddle from a new nationwide breach.
A spokesperson for Wawa confirmed that the company today became aware of reports of criminal attempts to sell some customer payment card information potentially involved in the data security incident announced by Wawa on December 19, 2019.
This type of point-of-sale malware is capable of copying data stored on a credit or debit card's magnetic stripe when those cards are swiped at compromised payment terminals, and that data can then be used to create counterfeit copies of the cards.
Finally, it's important to note that even if all 30 million of the cards that Joker's Stash is selling as part of this batch do in fact map back to Wawa locations, it's highly unlikely that more than a small percentage of these cards will actually be purchased and used by fraudsters.
In the 2013 megabreach at Target Corp., for example, fraudsters stole roughly 40 million cards but only ended up selling between one to three million of those cards.