The Intelligence Corner

Our experts’ unique discoveries, observations, and opinions on what’s trending today in Business Risk Intelligence and the Deep & Dark Web.

Search results
Posts of Ian W. Gray

Threat-Actor Interest in Bypassing CAPTCHA

Flashpoint analysts have observed ongoing discussion of bypassing Completely Automated Public Turing test to tell Computers and Humans Apart—more commonly known as CAPTCHA—among threat actors on English-language Deep & Dark Web (DDW) communities. CAPTCHA is intended to stop automated spam online by requiring users to verify text and/or imagery that is only recognizable to humans. […]

Read more

Mounting Uncertainty in Run-Up to Brazilian Election

August 14, 2018

Major political events can impact the threat landscape for businesses and government organizations, particularly during the run-up to major elections. This is especially true with the upcoming October general election in Brazil. Largely fueled by persistent political polarization and economic tensions, a climate of mounting uncertainty surrounding this election is already giving rise to cyber […]

Read more

Money Mules Remain Instrumental in Money-Laundering Schemes

July 30, 2018

In May, it was reported that criminals had siphoned hundreds of millions of pesos from Mexican banks through unauthorized transfers. The attack exploited problems with third-party software used by banks to connect to Mexico’s interbanking electronic payment system to send unauthorized transfers to various accounts at other banks. The transfers were quickly withdrawn as cash, […]

Read more

Banco de Chile ‘MBR Killer’ Reveals Hidden Nexus to Buhtrap Malware Kit Used to Target Financial Institutions, Payment Networks

Wiper malware that may have destroyed as many as 9,000 workstations and 500 servers inside the Banco de Chile in a late-May attack has similarities to the Buhtrap malware component known as MBR Killer, leaked to the underground in February 2016. Analysts at Flashpoint reverse-engineered the identified malware linked to the May 24 attack against […]

Read more

U.S. Thieves Exploring ATM Jackpotting Attacks

May 29, 2018

In January, the Secret Service warned U.S. banks that a form of robbery known as ATM jackpotting, which had already proliferated across Europe, Asia, and Latin America since as early as 2009, had finally made its way to the U.S., with at least six attacks taking place within a single week. The underlying factors contributing […]

Read more

Evaluating the Vulnerabilities Equities Process and Policy

November 28, 2017

As 2017 draws toward an end, we are reminded of the large-scale cyber attacks that have affected the government, private business, and consumers. Ransomware strains such as WannaCry and NotPetya are particularly memorable for their destructive capabilities and rampant propagation through a Microsoft Windows vulnerability. In response, the United States government has been compelled to […]

Read more

U.S. Sanctions Against Russia Raise Questions Over National Security Policy

December 29, 2016

On December 29, 2016, United States President Barack Obama formally enacted measures targeting the Russian Federation in response to a campaign of Russian state-sponsored interference in the 2016 U.S. Presidential Election. The President approved an amendment to Executive Order 13964, updating a previous executive order that gave the Federal government expanded authority to respond to […]

Read more

Hacking the Elections

The issue of cybersecurity has surfaced prominently during the current United States election cycle — not merely in terms of driving policy debates between the candidates, but more broadly as outside actors have attempted to influence the outcome (and raise doubts about the credibility) of the electoral process itself. The United States Intelligence Community recently […]

Read more