Collaborate Disseminate
Flashpoint announced two new product offerings in the past two weeks: Flashpoint Brand Protection and Flashpoint Card Fraud Mitigation. These two new products from Flashpoint further extend the capabilities that enterprises and government agencies have… Continue reading Flashpoint helps enterprises and govt agencies mitigate fraud and protect against physical and cyber threats
A little over a year ago, the FBI and law enforcement partners overseas seized WeLeakInfo[.]com, a wildly popular service that sold access to more than 12 billion usernames and passwords stolen from thousands of hacked websites. In an ironic turn of events, a lapsed domain registration tied to WeLeakInfo let someone plunder and publish account data for 23,000 people who paid to access the service with a credit card. Continue reading WeLeakInfo Leaked Customer Payment Info
Flashpoint announced it has acquired CRFT, a security automation provider that empowers teams of all sizes and skill levels to streamline daily security tasks through a seamless, no-code design and delivery engine. This acquisition augments the value o… Continue reading Flashpoint acquires CRFT to build automation around actionable threat intelligence
New SIEM Integrations, TIP Enrichments Powered by Technical Indicators and Data from Illicit Online Communities Bring Wealth of Contextualized Data to Users NEW YORK, Oct. 30, 2019 (GLOBE NEWSWIRE) — Flashpoint, the global leader in Busine… Continue reading Flashpoint Extends Integration Ecosystem, Arming More Users with Uniquely Sourced Intelligence, Visibility into Threats
A report reveals data, services and toolkits available for cybercriminals are becoming more expensive and sophisticated. Continue reading Cybercrime Tool Prices Bump Up in Dark Web Markets
Wannabe cybercriminals no longer are relying on dark web marketplaces to buy and sell their hacking tools, it seems. The selection and prices of malicious software offerings on well known dark web markets has remained mostly unchanged since 2017, according to findings published Tuesday by the risk intelligence firm Flashpoint. The mostly stagnant prices on these forums, which are most frequently used to buy and sell narcotics, is the latest proof that, even as cybercriminals continue to harass victims, skilled hackers are moving to more private channels to trade the most valuable techniques, suggested Ian Gray, Flashpoint’s director of analysis and research. The quality of the tools, like commodity malware and distributed denial-of-service rental services, also has remained steady, even as defenses have improved. “There’s a lack of innovation we’re seeing in the kinds of goods and on the marketplaces,” Gray said. “It might be an indication they’re looking at […]
The post Dark web marketplaces aren’t the hacker hotbeds they used to be appeared first on CyberScoop.
Continue reading Dark web marketplaces aren’t the hacker hotbeds they used to be
“BriansClub,” a popular underground store for buying stolen credit card data that uses Yours Truly’s likeness in its advertising, has itself been hacked. The data stolen from BriansClub encompasses more than 26 million credit and debit card records taken from hacked online and brick-and-mortar retailers over the past four years, including almost eight million records uploaded to the shop in 2019 alone. Continue reading “BriansClub” Hack Rescues 26M Stolen Cards
In April 2013, I received via U.S. mail more than a gram of pure heroin as part of a scheme to get me arrested for drug possession. But the plan failed and the Ukrainian mastermind behind it soon after was imprisoned for unrelated cybercrime offenses. That individual recently gave his first interview since finishing his jail time here in the states, and he’s shared some select (if often abrasive and coarse) details on how he got into cybercrime and why. Below are a few translated excerpts. Continue reading Interview With the Guy Who Tried to Frame Me for Heroin Possession
ThreatConnect, provider of the industry’s only intelligence-driven security operations platform, announced its updated integration with Flashpoint, the leader in Business Risk Intelligence (BRI). With this latest integration, joint customers can now le… Continue reading ThreatConnect users can now access data from Flashpoint
It’s a good time to be in the credit card-stealing business. Hacking associations like Magecart — a loose collection of at least 12 groups that specialize in skimming payment data from digital checkout pages — are carrying out more efficient attacks to walk off with online shoppers’ data. By injecting malicious code into vulnerable e-commerce systems in anywhere from the payment system Magento to advertisements and analytics pages, thieves are able to exfiltrate payment information without detection. Before scammers hit Amazon’s CloudFront content delivery network last week and Forbes magazine in May, Magecart was best known for shaking down popular sites like Ticketmaster and British Airways. Each group relies on different techniques, ranging from exploiting server vulnerabilities to using unique skimming code and, in the case of Group 5, which was blamed for the Ticketmaster breach, hacking third party suppliers. “It’s like a shotgun approach to mass compromise,” said Yonathan […]
The post Magecart’s ‘shotgun approach’ to payment card theft is wreaking havoc on e-commerce sites appeared first on CyberScoop.