The Demand for Canadian Bots on Genesis Market
Since the end of January, $10.1 million have already been lost to fraud in Canada, according to the Canadian Anti-Fraud Centre. When it comes to online identity theft, it may be harder to prevent than the traditional fraud we have been used to. Automatic logins and the use of unencrypted connections for online transactions can […]
Which Darknet Market Has Replaced DarkMarket?
Updated: November 26th, 2021 As the article below is a bit out of date, here’s a breakdown of most of the large changes in the dark web marketplace scene: Empire Market exit scammed in August 2020 DarkMarket was sized in January 2021 Yellow Brick exited a few days after DarkMarket BigBlue was seized by Interpol in […]
California Sees Up To 27% of Fraudulent Unemployment Claims During COVID
When the Canadian Government set up the CERB program in the Spring of 2020, speed was its main focus. Canadians were losing their job to government-mandated lockdowns, and they needed to put food on the table. The Government opted for a very simple form that took seconds to fill out, hosted on the Canada Revenue […]
Inexperienced Malicious Actors Leak Data about Themselves
There has been a flurry of news reports about malicious actors taking advantage of the COVID-19 pandemic to steal personal and financial information from victims. Bleeping Computer recently reported that malicious actors were sending fake invitations to get vaccinated by the UK National Health Service. To receive their vaccine, the victims were asked to share […]
The Russians or the Victims: Who’s to Blame for Carding?
Whenever Russians are mentioned in a story about the criminal underground, they were most likely part of some illicit activity. A few years ago, Russians appeared to be deeply involved in spam campaigns and sending illicit pharmaceuticals online. More recently, there have been increasing mentions of Russians participating in ransomware distribution, as well as in […]
What Are Malicious Actors Secretly Doing with Your Data?
A well-known malicious actor recently published on a forum the information of millions of customers of a popular T-shirt printing service. While no passwords were leaked, the criminal did publish the email addresses and personal information (names, addresses, and phone numbers) of millions of people. Why is this leak significant? First, this basic information is […]
Human Error Triggers Ransomware Attack, Largest Healthcare Security Breach in Sask.’s History
Some time between December 2019 and January 2020, eHealth Saskatchewan, the province-wide health delivery service, fell victim to a Ryuk crypto-ransomware attack, exposing the personal and medical information of more than 500,000 people. According to Ron Kruzeniski, Saskatchewan’s Information and Privacy Commissioner, the incident has been declared the largest data breach in the province’s history. […]
Another one bites the dust: goodbye Joker’s Stash. What’s next?
Last week DarkMarket, the second largest dark web marketplace, was shut down by law enforcement in Europe. This takedown is the result of increasing joint efforts to take down dark web facilitated crime. Some dark web market administrators are taking notice, and deciding to retire on their own terms, before the police come knocking on […]
DarkMarket Shut Down by Law Enforcement: New Lessons Learned
Over the weekend, German law enforcement shut down DarkMarket, a dark web marketplace, and arrested its administrator, an Australian living in Europe. According to the official press release, DarkMarket had: almost 500,000 users; more than 2,400 sellers; over 320,000 transactions; more than 4,650 bitcoin and 12,800 monero transferred for a total of CAD$217 million in […]
Malicious Actors Show Little Interest in Automotive Source Code Leak
Technical data leakage strikes again, this time affecting a major manufacturer in the automotive industry. Bleeping Computer reported this week that a misconfigured Git server has leaked source code from Nissan North America. The server had been secured with a default username and password, respectively admin:admin. It contained 20GB of data including code for mobile […]
