Cybercrime

From malware and botnets to the latest cybercriminal schemes, check out what today’s black hat hackers are up to.

Blog > Cybercrime

Criminals Finding FinTech to Their Liking

Financial technology, or fintech, has banks on edge because of its potential to disrupt core means of doing business. Services are being delivered in ways unimaginable a decade ago, and technology such as near-field communication, digital wallets, and other mobile-based payment and banking options are elevating many new players to heights previously reserved for a […]

Read more

Evaluating the Vulnerabilities Equities Process and Policy

November 28, 2017

As 2017 draws toward an end, we are reminded of the large-scale cyber attacks that have affected the government, private business, and consumers. Ransomware strains such as WannaCry and NotPetya are particularly memorable for their destructive capabilities and rampant propagation through a Microsoft Windows vulnerability. In response, the United States government has been compelled to […]

Read more

Trickbot Gang Evolves, Incorporates Account Checking Into Hybrid Attack Model

Individuals who reuse login credentials across multiple sites are more susceptible to account checking attacks, which occur when threat actors use credentials stolen from past database breaches or compromises to gain unauthorized access to other accounts belonging to the same victims. However, the process of mining compromised data for correct username and password combinations requires […]

Read more

Cybercriminal Abuse of Rewards Points

November 20, 2017

Cybercriminal interest in stolen data is not solely limited to financial or personally identifiable information. In fact, Flashpoint analysts have observed Deep & Dark Web chatter pertaining to the exploitation of rewards points programs, especially those associated with travel. This chatter aligns with cybercriminals’ interest in fraudulent booking services for hotels, airline tickets, and car […]

Read more

Best Practices for Combating Fraud in the Insurance Industry

November 7, 2017

Today’s fraudsters are nothing if not resilient. After all, combatting fraud is often compared to a game of “whack-a-mole” —and for good reason. Just as organizations across all sectors are continually developing new ways to prevent fraud, fraudsters are continually developing new schemes. While a new anti-fraud measure may help decrease one type of fraud, […]

Read more

“Ultimate Anonymity Services” Shop Offers Cybercriminals International RDPs

October 24, 2017

Dark Web marketplaces selling access to compromised Remote Desktop Protocol (RDP) servers have become increasingly popular in the cybercriminal ecosystem over the past several years. UAS — which stands for “Ultimate Anonymity Services” — is one such popular cybercriminal RDP shop that has been online since February 16, 2016.  UAS offers SOCKs proxies in addition to over […]

Read more

Evolution of the Russian-Language Underground’s Anonymizing Technology

October 5, 2017

Much like a virus that continually mutates to render previously-effective vaccines obsolete, cybercriminals’ ongoing development of new anonymizing technologies empowers them to obfuscate their identities while carrying out illicit schemes. Throughout the Russian-language underground in particular, many adversaries have been known to spend hundreds of dollars on tools designed to help them sidestep the latest […]

Read more