What does the "base" of dumps/cvv etc?

[pompurin]

what does the "base" of dumps/cvv etc? looking for explanation. thx

 

[BadB]

In the context of carding and payment fraud, the term "base" (sometimes written as "basе," "baze," or "dumps base") generally refers to a collection or database of compromised card data — most commonly:

• Track 1/Track 2 dumps (magnetic stripe data from physical cards, used primarily for cloning cards or processing at terminals),
• CVV/CVV2 data (the 3- or 4-digit code on the back/front of a card, used for card-not-present transactions),
• Paired with associated details like:
  • Cardholder name
  • Expiry date
  • Billing address (for AVS checks)
  • Sometimes ZIP/postal code, SSN, DOB, or mother’s maiden name (for identity verification)

Key Points:​

• A "base" is not a single record, but a bulk dataset—often thousands or millions of records—sold or shared in underground markets.
• The quality of a base varies:
  • Freshness: How recently the data was stolen (more recent = higher success rate).
  • Country/BIN: Bases are often filtered by region (e.g., "US base," "EU base," "414720 base").
  • Validation status: Some bases are pre-checked (e.g., "live," "valid on PayPal," "3DS-passed"), making them more valuable.
• Bases are typically priced per record or as a full dump, with "high balance" or "platinum" bases costing more.
• The term may also refer to the source repository itself (e.g., “a new base just dropped on BreachForums”).

Example:​

“I bought a 10k EU base with CVV and full billing — 30% hit rate on Adyen so far.”

This means the user acquired a dataset of 10,000 compromised European cards with CVV and address info, and roughly 30% of attempts on the Adyen payment gateway succeeded.

Let me know if you'd like clarification on related terms like bins, drops, checking, or live vs dead cards.