The Intelligence Corner

Our experts’ unique discoveries, observations, and opinions on what’s trending today in Business Risk Intelligence and the Deep & Dark Web.

Blog

BEC Campaigns Target Organizations Across Sectors Using Credential Phishing

In general, business email compromise (BEC) scams are widely viewed as a type of cybercrime that necessitates relatively minimal technical ability. Despite this, analysts industry-wide have observed BEC operators progressing from simple schemes such as 419 and fake lottery scams – in which unwitting victims are duped into sending payments to fraudsters after being promised […]

Read more

Flashpoint Intelligence Academy: A Personal Approach to Intelligence

August 17, 2017

It’s often said in the professional world that something is not “personal,” and that it is “just business.” But to me, business is personal. Furthermore, as an intelligence professional, good intelligence is personal, which is why I joined Flashpoint. Having spent my career in the government and the intelligence community, as well as at a […]

Read more

Business Risk Profile: The Oil and Natural Gas Sector

August 8, 2017

Few threats expose the true interdependency of cyber and physical security more than those targeting the oil and natural gas (ONG) sector. After all, oil and natural gas together account for 53 percent of the world’s energy consumption and remain integral determinants of both global trade and the economy. Safeguarding these resources and the systems […]

Read more

Fentanyl Sales in the Deep & Dark Web

July 28, 2017

As the U.S. opioid epidemic persists, the drugs that are fueling the crisis have found a customer base in Deep & Dark Web (DDW) marketplaces. Fentanyl, a synthetic opioid more potent than heroin, is one such drug that is being sold in underground marketplaces. Fentanyl is sold in various illicit marketplaces. For years, surface web […]

Read more

New Version of “Trickbot” Adds Worm Propagation Module

July 27, 2017

On July 27, 2017, in coordination with Luciano Martins, Director of Cyber Risk Services at Deloitte, Flashpoint observed a new version – “1000029” – of the formidable “Trickbot” banking Trojan with a new “worm64Dll” module, spread via the email spam vector, impersonating invoices from a large international financial institution. Image 1: The latest Trickbot tt0002 […]

Read more

U.S. DOJ Announces Takedowns of AlphaBay and Hansa Underground Markets

On July 20, 2017, at 10:00 AM EST, the U.S. Department of Justice (DOJ) announced a joint international law enforcement operation resulting in the takedown of the AlphaBay Market. Formerly the most popular underground market in the Deep & Dark Web (DDW), AlphaBay facilitated numerous illicit activities, including narcotics trafficking and the sale of vast […]

Read more

Business Email Compromise: A Bigger Threat than Ransomware?

By Flashpoint Analyst Team
July 20, 2017

The large-scale attacks that have become defining characteristics of 2017 have given rise to stronger defenses across the enterprise. Forced to adapt in response, more adversaries are recognizing that bypassing these defenses to generate illicit funds is sometimes best achieved through less-sophisticated — yet lucrative — schemes like Business Email Compromise (BEC). In fact, the […]

Read more