Cybercrime and Dark Web Research

Show
Security Practitioner’s Guide to Email Spoofing and Risk Reduction
January 24, 2019

In our previous extended blog, Tackling Phishing: The Most Popular Phishing Techniques and What You Can Do About It, we …

read more

The Nouns of Black Hat: People, Places, and Things From Summer Camp 2019

August 19, 2019

Black Hat and DEFCON are a wrap! Digital Shadows was there in a big way this year and it was …

read more

Fresh blow for dark web markets: Nightmare market in disarray

August 13, 2019

Over the past three weeks, Digital Shadows has observed another popular dark web criminal market – Nightmare – experience several …

read more

Capital One Breach: What we know and what you can do

July 31, 2019

Monday blues. It’s a thing. It’s when you start the week feeling moody because your weekend is over. The feeling …

read more

The Account Takeover Kill Chain: A Five Step Analysis

July 30, 2019

It’s no secret that credential exposure is a growing problem. Take a look at Troy Hunt’s https://www.haveibeenpwned.com – a tool …

read more

A Growing Enigma: New AVC on the Block

July 19, 2019

This week, in a ground breaking announcement, the Bank of England named Alan Turing the new face of the £50 …

read more

Facebook’s Libra Cryptocurrency: Cybercriminals tipping the scales in their favor

June 27, 2019

The announcements of Facebook’s new cryptocurrency “Libra” and its associated digital wallet “Calibra” have conjured up discussion, debate, criticism, and …

read more

BlueKeep: Cutting through the hype to prepare your organization

May 24, 2019

Over the last week we have all been tuning into our news feeds and listening to the security folks chatting …

read more

FBI IC3: Cybercrime Surges in 2018, Causing $2.7 Billion in Losses

April 23, 2019

This week, the Federal Bureau of Investigation released its 2018 Internet Crime Complaints Center (IC3). In 2018, the IC3 responded …

read more

Easing into the extortion game

April 3, 2019

One of the main ideas which flowed through Photon’s most recent research report, A Tale of Epic Extortions, was that cyber …

read more

Predator: Modeling the attacker’s mindset

April 2, 2019

Author: Richard Gold  The phrases “attacker’s mindset” or “think like an attacker” are often used in cyber security to encourage …

read more

Cyber Risks and High-frequency Trading: Conversation with an Insider

March 26, 2019

Research from the Carnegie Endowment for International Peace published this week focused the attention on how financial systems around the …

read more

Dark Web Typosquatting: Scammers v. Tor

March 21, 2019

Time and time again, we see how the cybercriminal ecosystem often mirrors what happens in the business world. This can …

read more

Purple Teaming with Vectr, Cobalt Strike, and MITRE ATT&CK™

March 6, 2019

Authors: Simon Hall, Isidoros Monogioudis   Here at Digital Shadows we perform regular purple team exercises to continually challenge and …

read more

Extortion Exposed: Sextortion, thedarkoverlord, and SamSam

February 21, 2019

In our most recent research, A Tale of Epic Extortions, the Digital Shadows Photon Research Team approached the topic of …

read more

Photon Research Team Shines Light On Digital Risks

February 13, 2019

I’m very excited to announce the launch of the Digital Shadows’ Photon Research Team. We have decided to bolster our …

read more

SANS DFIR Cyber Threat Intelligence Summit 2019 – Extracting More Value from Your CTI Program

February 5, 2019

We were fortunate to attend the 2019 SANS DFIR Cyber Threat Intelligence Summit this year, which brings together some of …

read more

Powering Investigations with Nuix Software: The Case of thedarkoverlord and the 9/11 Files

January 22, 2019

The Panama Papers in 2016 highlighted the challenges facing investigators dealing with large document leaks. With over 11.5 million documents …

read more

Thedarkoverlord runs out of Steem

January 16, 2019

On 31 December 2018, the notorious extortion actor known as “thedarkoverlord” announced on Twitter and Reddit that they were in …

read more

TV License and Vehicle Tax Fraud: New Year, Same Old Scams

January 8, 2019

Over the last week we’ve been tracking several emails impersonating UK services such as “TV Licensing” and “Vehicle Road Tax”. …

read more

Cyber Threats to Watch in 2019: Key Takeaways from our webinar with the FBI Cyber Squad

December 20, 2018

As 2018 comes to a close, Digital Shadows partnered with the FBI’s Cyber Division for a webinar to discuss some …

read more

Bomb Threat Emails: Extortion Gets Physical

December 14, 2018

We’ve seen yet another change in tactics for the recent spate of extortion campaigns. Whereas before these emails tried to …

read more

Tackling Phishing: The Most Popular Phishing Techniques and What You Can Do About It

December 12, 2018

Overall, the infosec community has done a relatively good job in securing systems. While a measure of restrained back-patting is …

read more

2019 Cyber Security Forecasts: Six Things on the Horizon

December 5, 2018

The new year is upon us! 2018 brought us Spectre and Meltdown, Russian GRU indictments, and the exposure of 500 …

read more

Threat Actors Use of Cobalt Strike: Why Defense is Offense’s Child

November 29, 2018

I’m a big fan of the Cobalt Strike threat emulation software. Here at Digital Shadows, it’s a staple of our …

read more

Mapping the ASD Essential 8 to the Mitre ATT&CK™ framework

November 27, 2018

Australian Signals Directorate Essential 8 The Australian Signals Directorate (ASD) has published what it calls the “Essential 8”: a set …

read more

Black Friday and Cybercrime: Retail’s Frankenstein Monster

November 20, 2018

With every year that passes, Black Friday seems to morph into a creation its original proponents could not have even …

read more

Sextortion 2.0: A New Lure

November 20, 2018

Back in September we released a blog about the large volume of sextortion email campaigns that were hitting people’s inboxes. …

read more

A Look Back at the ENISA Cyber Threat Intelligence-EU Workshop 2018

November 13, 2018

I recently attended the ENISA (European Union Agency for Network and Information Security) Threat Intelligence Workshop held in Brussels on …

read more

To Pay or Not to Pay: A Large Retailer Responds to DDoS Extortion

November 8, 2018

Fans of The Sopranos or Goodfellas are well-versed in the world of extortion. Whether it is paying off Tony Soprano …

read more

81,000 Hacked Facebook Accounts for Sale: 5 Things to Know

November 2, 2018

This morning, the British Broadcasting Corporation (BBC) published an article detailing how online actors had obtained and advertised at least …

read more

The Dark Web: Marketers’ Trick or Threat Intelligence Treat?

October 31, 2018

At this time of the year, you can’t go anywhere without encountering something dark, spooky and mysterious. It all reminds …

read more

Bank Discovers Customer Credit Card Numbers Traded Online

October 23, 2018

Payment card fraud costs banks and merchants nearly $23 billion a year and rising. As consumers spend more money online, …

read more

12.5 Million Email Archives Exposed: Lowering the Barriers for BEC

October 18, 2018

Digital Shadows’ latest research report, Pst! Cybercriminals on the Outlook for Your Emails, highlights the different ways cybercriminals can access corporate …

read more

33,000 Accounting Inbox Credentials Exposed Online: BEC Made Easy

October 9, 2018

Last week, I wrote about how cybercriminals are looking to trade corporate emails in their pursuit of conducting Business Email …

read more

Business Email Compromise: When You Don’t Need to Phish

October 4, 2018

According to the FBI, Business Email Compromise (BEC) and Email Account Compromise (EAC) have caused $12 billion in losses since …

read more

Cybercriminal Marketplaces: Olympus Has Fallen

September 28, 2018

The Olympus cybercriminal marketplace has been caught up in another PR disaster, with the owners reportedly conducting an exit scam …

read more

Thedarkoverlord Out to KickAss and Cash Out Their Data

September 27, 2018

A user claiming to be the notorious darkoverlord extortionist threat actor has appeared on a dark web cybercriminal forum offering …

read more

The 2017 FSB indictment and Mitre ATT&CK™

September 20, 2018

On  February 28th, 2017 the US Department of Justice indicted a notorious hacker, Alexsey Belan, and his FSB (Russia’s internal …

read more

Airline Discovers Trove of Frequent Flyer Accounts Compromised and Posted for Sale Online

September 14, 2018

Reward program fraud has been rising in recent years across the aviation industry as well as the entire transportation sector. …

read more

MITRE ATT&CK™ and the North Korean Regime-Backed Programmer

September 13, 2018

On 6th September the US Department of Justice (DOJ) unsealed an indictment against a North Korean regime-backed programmer who is …

read more

Sextortion – When Persistent Phishing Pays Off

September 6, 2018

You may have heard of a recent surge in sextortion-based phishing campaigns. These campaigns seek to extort victims by threatening …

read more

Online Risks to Fortnite Users

September 4, 2018

With an enticing array of viral dance moves, tough weekly challenges and fresh skins, people are going bananas for Fortnite. …

read more

Online Cybercrime Courses: Back to School Season

August 23, 2018

It’s that time of year again. Summer is drawing to a close and retailers are making the most of the …

read more

Mitre ATT&CK™ and the FIN7 Indictment: Lessons for Organizations

August 22, 2018

On August 1, 2018, the US Department of Justice unsealed an indictment against three members of the international cybercrime group …

read more

Five Threats to Financial Services: Part Five, Hacktivism

August 15, 2018

OK, so it’s not a sexy as insider threats, banking trojans, phishing campaigns or payment card fraud, but hacktivism is …

read more

Five Threats to Financial Services: Part Four, Payment Card Fraud

August 14, 2018

Payment card information is the lifeblood of the cybercriminal ecosystem. In previous blogs in this series, we’ve focused on how …

read more

Digital Shadows Contributes to Insider Threat Research

August 9, 2018

On July 30, Forrester published its latest research report on malicious insiders, Defend Your Data As Insiders Monetize Their Access. …

read more

Five Threats to Financial Services: Phishing Campaigns

August 8, 2018

In our last blog, we highlighted how banking trojans are a threat to banking customers and small businesses, normally delivered …

read more

FIN7: Arrests and Developments

August 2, 2018

Three alleged members of FIN7 arrested On August 1st, 2018, the US Department of Justice filed criminal charges against three …

read more

Security Spotlight Series: Dr. Richard Gold

July 31, 2018

Organizations rely on Digital Shadows to be an extension of their security team. Our global team provide the latest tooling, …

read more