Cybercrime Chilean Carding Shop Operator Extradited to US The 24-year-old suspect has been accused of trafficking over 26,000 cards from a single brand. By Eduard Kovacs | February 27, 2026 (7:34 AM ET) Flipboard Reddit Whatsapp Whatsapp Email A 24-year-old Chilean national has been extradited to the US over his alleged role in running a cybercrime operation that involved the trafficking of payment card data. The suspect, Alex Rodrigo Valenzuela Monje, allegedly known online as VAL4K , was arraigned in Utah federal court on charges of trafficking in unauthorized access devices and unlawful transfer of means of identification to facilitate criminal conduct. The charges stem from his alleged operation of an illicit online card shop selling stolen credit card data. Valenzuela Monje is accused of running Telegram channels named MacacoCC Collective and Novato Carding from at least May 2021 to August 2023, where he sold dumps of compromised payment card information, including account numbers, card types, expiration dates, CVV/CVC codes, and cardholder names. He allegedly sold cards for most major US brands, with data for approximately 26,000 cards from one brand alone. Indicted by a Salt Lake City grand jury in August 2023, the alleged hacker faced a drawn-out extradition: Chile’s Supreme Court initially approved the US request in April 2025, but appeals pushed his arrest to January 2026. Advertisement. Scroll to continue reading. Valenzuela Monje was transferred to US custody on February 25, 2026, and pleaded not guilty at his arraignment on February 26. Related : Carding Marketplace BidenCash Shut Down by Authorities Related : US Announces Charges, Sanctions Against Russian Administrator of Carding Website Related : Anonymous Fénix Members Arrested in Spain Related : Man Linked to Phobos Ransomware Arrested in Poland Written By Eduard Kovacs Eduard Kovacs (@EduardKovacs) is the managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering. More from Eduard Kovacs Trend Micro Patches Critical Apex One Vulnerabilities Google Disrupts Chinese Hackers Targeting Telecoms, Governments Medical Device Maker UFP Technologies Hit by Cyberattack SecurityWeek Report: 426 Cybersecurity M&A Deals Announced in 2025 Wynn Resorts Confirms Data Breach After Hackers Remove It From Leak Site Claude’s New AI Vulnerability Scanner Sends Cybersecurity Shares Plunging VMware Aria Operations Vulnerability Could Allow Remote Code Execution Taiwan Security Firm Confirms Flaw Flagged by CISA Likely Exploited by Chinese APTs Latest News Anthropic Refuses to Bend to Pentagon on AI Safeguards as Dispute Nears Deadline Aeternum Botnet Loader Employs Polygon Blockchain C&C to Boost Resilience Juniper Networks PTX Routers Affected by Critical Vulnerability Critical Flaws Exposed Gardyn Smart Gardens to Remote Hacking Apple iPhone and iPad Cleared for Classified NATO Use Four Risks Boards Cannot Treat as Background Noise Claude Code Flaws Exposed Developer Devices to Silent Hacking Gambit Security Emerges From Stealth With $61 Million in Funding Trending Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Identity Under Attack: Why Every Business Must Respond Now February 11, 2026 Attendees will walk away with guidance for how to build robust identity defenses, unify them under a consistent security model, and ensure business operations move quickly without compromise. Register Virtual Event: Ransomware Resilience & Recovery 2026 Summit February 25, 2026 SecurityWeek’s 2026 Ransomware Summit will discuss a roadmap for defending the enterprise, from mitigating root causes to mastering recovery, giving security teams the critical insights needed to navigate and neutralize today’s ransomware extortion threats. Submit People on the Move BreachRx has named Young-Sae Song as Chief Marketing Officer. Titania has appointed Andrew Woodford as Chief Technology Officer. Menlo Security has named Bill Robbins as Chief Executive Officer. More People On The Move Expert Insights Four Risks Boards Cannot Treat as Background Noise The goal isn’t about preventing every attack but about keeping the business running when attacks succeed. (Steve Durbin) How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development Developers must view AI as a collaborator to be closely monitored, rather than an autonomous entity to be unleashed. Without such a mindset, crippling tech debt is inevitable. (Matias Madou) Security in the Dark: Recognizing the Signs of Hidden Information Security failures don’t always start with attackers, sometimes they start with missing truth. (Joshua Goldfarb) Living off the AI: The Next Evolution of Attacker Tradecraft Living off the AI isn’t a hypothetical but a natural continuation of the tradecraft we’ve all been defending against, now mapped onto assistants, agents, and MCP. (Etay Maor) Why We Can’t Let AI Take the Wheel of Cyber Defense The fastest way to squander the promise of AI is to mistake automation for assurance, and novelty for resilience. (Steve Durbin) Flipboard Reddit Whatsapp Whatsapp Email