Twitter has a massive dark web problem
New research from Cybersixgill shows how scammers sell bots, spam tools, and fake Twitter accounts on underground forums and the dark web.
Threat Intelligence
Cybersecurity stories reported by expert threat analysts.
Threat Prioritization Takes a Front Seat for the Payment Card and Financial Payment Industry
Over the last few weeks, I had the pleasure of attending and presenting at both PCI SSC Community Meetings held in North America and Europe, the premiere conference for everything related to the payment card and financial payment industry. The first live event in two years, leading payment and data
Threat Actors are Already Building Phishing Pages to Target Holiday Shoppers
Bad actors are building the infrastructure for holiday-themed phishing and scamming.
Here’s how scammers commit refund fraud to steal from retailers
A tactic called refunding is growing in popularity. On underground forums scammers share how they make cash by defrauding retailers.
Illicit underground pharma sales are on the decline
Authorities have shut down dedicated underground pharmaceutical drug markets in big numbers over the last three years. But many are still active.
Hacker home run: This is how people are buying stolen sports streaming passwords on the underground
Pro sports streaming accounts are available on the dark web for less than peanuts and Cracker Jacks.
The Top 5 Cyber Risks: How to Prevent & Protect with Threat Intelligence
Discover how to defend against the five most pernicious cyber risks using threat intelligence from the deep and dark web. Read
How gift cards are used to launder money
Underground actors buy and sell gift cards on dark web markets to wash dirty money Converting stolen assets to cash is a complex process. Even if an attacker manages to take over a victim’s bank account, they must go to significant lengths when cashing out, transferring, and laundering the
Generating “grift” cards is free cash for cybercriminals
How underground actors use automated tools to create valid gift card codes According to the FTC’s 2021 Consumer Protection Data Spotlight, gift cards are the most common payment method for scammers, leading to a reported $148 million stolen from consumers. Gift cards appeal to threat actors because they can
Champions League of Cybercrime
Billions of Football fans worldwide were thrilled last month as the UEFA Football Champions League entered its group stage. 32 of the best clubs in European football are now competing for the cup. According to the Telegraph, Man City has the best shot of winning the tourney this year, followed
Radical Political Activists Communicate Unrestricted on The Dark Web
The proliferation of unrestricted, encrypted messaging platforms with millions of users has made it easy for extremists to coordinate attacks across time zones and borders. When a couple of locals noticed more than two dozen men dressed in combat gear piling into the back of a rented moving van in
If you think ransomware attacks come from stealth basement operators – then think again.
Every business, from small and medium-sized businesses to international conglomerates, is a ransomware target. Here is all you need to know about ransomware as a service (RaaS) and the sophistication of the Dark Web businesses behind it. There are many myths surrounding hackers and threat actors. People often imagine a
Ransomware and Wholesale Access Markets: A $10 investment can lead to millions in profit
Major ransomware attacks can start with endpoint access purchased for cheap by bad actors on underground markets. The first stage of an active cyberattack is initial access, which is the establishment of an initial foothold within a network. This step is difficult to perform, and therefore many aspiring attackers can
Basing vulnerability management solely on CVSS scores is risky business
Cybersixgill’s end-to-end Dynamic Vulnerability Exploitation takes a contextual, more accurate approach to vulnerability management and prioritization. This year, back-to-school time coincides with increased cyberattacks against higher education institutions. A recent survey shows that more than 60 percent of colleges and universities experienced ransomware attacks in the past year, costing
Breaking the Russian boycott
Russian dark web actors use underground markets to move money and purchase illicit goods, despite the Western embargo. When a banned product is in high demand, there is opportunity for a black market to thrive. Considering the extent of Western governmental and private sector sanctions against Russia in response to
Hack To School
Compromised university credentials and endpoints on the dark web could cost students and schools millions. Introduction Possession of a student’s university account is desirable for threat actors. It enables them to impersonate the student and steal their identity. More advanced threat actors can use this as the first step