Cybercrime

From malware and botnets to the latest cybercriminal schemes, check out what today’s black hat hackers are up to.

Blog > Cybercrime

Ghosts in the Credit System Machine

April 5, 2018

A low and slow means of fraud is costing banks hundreds of millions of dollars in losses typified by a frustrating game where investigators are literally chasing shadows in an effort to collect debt from individuals who don’t really exist. Criminals with time, resources, and patience are cashing out after using existing or unassigned Social […]

Read more

Compromised Magento Sites Delivering Malware

Ecommerce websites running on the popular open-source Magento platform are being targeted by attackers who are using brute-force password attacks to access administration panels to scrape credit card numbers and install malware that mines cryptocurrency. Researchers at Flashpoint are aware of the compromise of at least 1,000 Magento admin panels, and said that interest in […]

Read more

Inside the Underground Trade of Prescription Drugs

March 22, 2018

Flashpoint analysts have observed a thriving prescription drug trade on both the surface web and the Deep & Dark Web (DDW), with vendors advertising everything from high-risk, controlled substances such as Xanax and OxyContin to more benign medications, such as inhalers and eye drops. Surface-Web Pharmacies Surface-web pharmacies are online stores that sell a variety […]

Read more

Reddit in Cat-and-Mouse Game with Fraud-Related Accounts, Subreddits

Once authorities shut down the AlphaBay market last July, fraudsters went scurrying elsewhere to advertise the sale of illicit and dangerous goods, personally identifiable information (PII), stolen banking credentials, and to connect with other vendors and customers. Reddit is one surface-web avenue abused by criminals once the extensive Deep & Dark Web (DDW) marketplace went […]

Read more

Refund Fraud and Fake Receipts Proliferate on the Deep & Dark Web

Recognizing customer satisfaction as a key driver of retention, many retailers have implemented generous refund or replacement policies. Unfortunately, these policies can be susceptible to various forms of merchant abuse. Refund fraud is a pervasive form of merchant abuse in which a threat actor purchases a product from an online store and has it shipped […]

Read more

SDA Protocol Payment Cards Remain a Target for Cybercriminals

Despite the heralded security of chip-and-PIN payment cards that follow the EMV (Europay, Mastercard and Visa) standard, some EMV cards are still undermined by the continued use of the static data authentication (SDA) protocol. SDA is one of three protocols that can be used to authenticate transactions, along with dynamic data authentication (DDA) and combined […]

Read more

Assessing Threats to the Pyeongchang 2018 Winter Olympics

Olympic events are high-budget, high-profile convergences of elite athletes and global media organizations that tend to carry inherently geopolitical undertones. As such, they can be seen as appealing targets for various cyber and physical adversaries motivated by financial or political gain. The 2018 Winter Olympics in Pyeongchang, South Korea are no exception, with the precarious […]

Read more

Tax Season is Prime Time for Business Email Compromise

February 15, 2018

Business Email Compromise (BEC) is somewhere north of a $5 billion annual global criminal enterprise, according to the FBI’s Internet Crime Complaint Center (IC3), dwarfing most other threats in terms of dollar losses, including ransomware and prolific banking malware such as GameOver Zeus. And right now, we’re in one of the criminals’ most lucrative periods […]

Read more

Targeted Attacks Against South Korean Entities May Have Been as Early as November 2017

On January 31, 2018, KrCERT/CC, the Republic of Korea’s (South Korea) Computer Emergency Response Team, released a notice regarding an Adobe Flash vulnerability, designated CVE-2018-4878. The notice stated that this zero-day vulnerability affects all versions of Adobe Flash Player ActiveX up to 28.0.0.137, which Adobe released on January 9, 2018. KrCERT/CC recommended uninstalling Flash Player […]

Read more