Indian-Based VoIP SIP Provider Fuels Growth In Russia's Caller ID Spoofer Services Market Segment - An Analysis

I've just stumbled upon a currently active and pretty prolific across the cybercrime ecosystem Caller ID and one-time-password bypassing the verification services which is currently advertised on several cybercrime-friendly forum communities courtesy of  the India-based company known as Sipco Systems where the ultimate goal is to offer and provide cybercriminals internationally with the necessary Caller ID and online mobile application based stores verification process services allowing them to commit related cybecriminal activity online.

Sample domain known to have been involved in the campaign:

htxxp://ispoof.cc

Sample screenshots of the Caller ID and one-time-password interception cybercrime-friendly service:

\

These services are just the tip of the iceberg and the ability to come up with a spoofed or custom caller ID in an automated fashion can be definitely attributed to a growing social engineering vector based market segment that's also fully and successfully capable of intercepting one-time-passwords including to result in possible mobile application store verification process fraud and bypassing.

Continue reading →

Yet Another Currently Active E-Shop for Stolen Credit Cards Information Spotted in the Wild - An Analysis

I've just stumbled upon yet another currently active E-Shop for stolen and compromised credit cards information and I've decided to share additional actionable intelligence on its online infrastructure including to discuss the possible fraudulent and malicious schemes that could originate based on the existence of such E-Shops for stolen and compromised credit cards information.

Sample domains known to have been involved in the campaign:

https://rescator.cn

https://rescator.sh

\

Sample Dark Web Onion known to have been involved in the campaign:

http://rescatorfof3pwgux4olwxxcd22yjtuj72kmdltyr6tsr6jfohpnhead.onion

Sample screenshots from the rogue and fraudulent E-Shop for stolen credit cards information:

The E-Shop for stolen credit cards information is courtesy of one of the infamous cybercrime-friendly forum communities known as - hxxps://lampeduza.cm.

Continue reading →

Profiling Yet Another Currently Active E-Shop for Stolen and Compromised Credit Cards Information - An Analysis

I've recently stumbled upon yet another currently active online E-Shop for stolen and compromised credit cards information and I've decided to provide some actionable intelligence on its online infrastructure including to discuss the possible revenue schemes that could originate from the existence of such E-Shops for stolen credit cards information. 

Sample domain known to have been involved in the campaign:

hxxps://ugmarket.cc

Sample screenshots of the rogue and fraudulent E-Shop for stolen credit cards information:

The possibilities for related fraudulent and malicious online activity that could originate from the existence of such E-Shops for stolen and compromised credit cards information are limitless in the context of having the bad guys steal actual financial amounts directly from the victims or using them in related purchases that also includes the use of money mules to cash out the amounts.

Continue reading →

Profiling a Newly Launched E-Shop for Stolen Credit Cards Data - An Analysis

I've just stumbled upon a newly launched and currently active E-Shop for stolen credit cards information and I've decided to take a deeper look potentially exposing it and offering actionable intelligence on its online infrastructure part of the "Exposing the Market for Stolen Credit Cards Data" blog post series.

Sample domains involved in the campaign include:

hxxp://majorcc.shop/

hxxp://majorcc.store/

hxxp://majorcc.ru

Sample Dark Web Onion known to have been involved in the campaign:

http://xktoxobz3jv6epntuj5ws7nc6zuihfroxziprd5np5xkbby4nzmmmiyd.onion

Sample screenshots of the rogue and fraudulent E-Shop for stolen credit cards information:

\

Based on the actual underground forum market proposition the newly launched vendor appears to have been persistently and systematically supplying newly obtained and stolen credit cards information which in reality means that a lot of people including financial institutions are really affected by this boutique stolen credit cards information E-Shop operation.

Continue reading →

Profiling a Newly Launched Vendor of Fake Personal IDs and Fake Passports - An Analysis

I've just came across to yet another underground market cybercrime proposition this time offering access to rogue and stolen credit cards and fake documents which also includes passports and personal IDs courtesy of a newly emerged online vendor of stolen and compromised personal details information data.

Sample screenshots of the rogue underground market proposition for rogue fake and stolen personal IDs and fake passports:

The primary purpose for coming up with such a service would be to empower novice and experienced cybercriminals with the necessary information to further commit related and relevant cybercrime-friendly activities which also includes the ability to fake or spoof a new identity which could lead to related fraudulent and rogue cybercrime-friendly online schemes.

Continue reading →

Sample Rogue and Stolen Gift Cards Offered for Sale on the Underground Marketplace - An Analysis

I've recently stumbled upon a currently active underground forum market proposition for stolen and fraudulently obtained online E-Shop gift cards and I've decided to share some of the key factor propositions based on the original proposition which I'll profile in this post.

Sample screenshots based on the original underground forum market proposition:

 

The vendor in question is offering a pretty decent inventory of various gift cards from major U.S based E-Shops and online retailers where users can buy them and facilitate additional fraud and fraudulent schemes and mechanisms.

Continue reading →