How would the operator of an ecommerce website have gotten their hands on these things to seed their data with them? Is this something they would've known to ask for?
So either you generate some fake but valid credit card numbers (i.e with credit card number generator) and set some monitoring on them or even better, you generate a credit card number with something like revolut, and as soon you get some transaction on that number, you know your database was leaked.. not hard actually to setup something like that.
