Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Internet ID theft kit availability confirmed

Finjan Software : 10 October, 2008  (Technical Article)
Finjan provides confirmation of press reports in Australia regarding the widespread availability of information on stolen credit cards on the internet
Finjan has confirmed the findings of an Australian investigation into the sale of stolen credit and debit card information on the Internet.

'It seems that Sydney Morning Herald reporters have uncovered the fact that almost anyone on the Internet can buy stolen payment card details for as little as US$1.50 a time for Aussie details, and US$2.50 a time for US and English cardholder information,' said Yuval Ben-Itzhak, chief technology officer with Finjan.

'Our research team spotted this not inconsiderable trade in stolen payment card data back in the late spring, which we published details of in our Q2 Web Security Trends report in July. At that time, however, the going rate was around $15 a pop, so the rate has clearly fallen, perhaps because of the glut of this kind of data being sold on the Internet. Our Q2 report also describes the cybercrime organization structure and modus operandi' he added.

These cybercrime organizations consist of strict hierarchies, in which each cybercriminal is rewarded according to his position and task. The "boss" in the cybercrime organization operates as a business entrepreneur and does not commit the cybercrimes himself. Directly under him is the "underboss", acting as the second in command and managing the operation. This individual provides the Trojans for attacks and manages the Command and Control (C&C) of those Trojans. "Campaign managers" reporting to the underboss lead their own attack campaigns. They use their own "affiliation networks" as distribution channels to perform the attacks and steal the data. The stolen data is sold by "resellers", who are not involved in the Crimeware attacks themselves.

"In our Q2 Web security trend report we provide a closer look at today's cybercrime enemy, indicating how it organizes, operates and benefits from stolen data. We unveil the business cycle of data collecting and trading by today's cybercriminals, said Ben-Itzhak. "We also show examples of the highly effective tools and methods that are being used to steal data from enterprises around the world."
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo