User Tools

Site Tools


training:itu-ipv6:ttx_script1
no way to compare when less than two revisions

Differences

This shows you the differences between two versions of the page.


training:itu-ipv6:ttx_script1 [2016/05/25 18:39] (current) – created - external edit 127.0.0.1
Line 1: Line 1:
 +====== Breaking & Exclusive! ======
 +
 +EXERCISE EXERCISE EXERCISE
 +
 +===== Security Researchers Discover Treasure Trove of Credit Card Data =====
 +
 +
 +Independent security researcher Eric Poolen has discovered what appears to be a treasure trove of new credit cards available on the underground black market. The same cybercrime market used in the Target and Home Depot attacks, crdpny[dot]cc, which has sold tens of millions of cards stolen from past breaches of those two companies as well as others, has been releasing batches of cards titled “Corporate Greed.”
 +
 +In addition, Eric says, “this has been happening over the course of a couple weeks- which makes me believe that whomever is breached is either unaware or has not taken steps to prevent this from continuing to happen.”
 +
 +{{ :itu-ipv6:ccdump.png?300 |}}
 +//**The cybercrime shop crdpny[dot]cc pushed out ten batches of cards labeled “Corporate Greed.”**//
 +
 +At this point and time, it is unknown who the victim may be, though the cards are sorted for sale by zipcode and reach across the country. Based on the shear volume of cards for sale, it does not appear to be a small or medium sized business that was infiltrated
 +
 +Additionally, Eric believes there may be a new variant of “BackOff”, a malware strain used in past breaches involving credit card data, which has been designed to siphon data from cards when they are swiped at infected point-of-sale systems running Microsoft Windows.  This new variant appears to be exploiting a new Zero Day.
 +
 +When asked for thoughts on how companies can protect themselves, Rick Bender from GH Security says, “Executives need to understand that their company is a target if they do anything involving accepting a credit card, as that information is highly valuable in the underground market. With technology constantly changing, newer and more sophisticated defenses and response approaches are needed to combat this rising threat.”
 +
 +It’s not clear how many credit cards may have stolen, but sources from multiple major card issuers said they are aware of more than two million cards total spanning multiple issuers. Another source at an incident response firm said it appears that “when all is said and done, this one will put its mark up there with some of the largest breaches to date, like Target and Home Depot.”
 +
 +Credit to Brian Krebs for inspiring this mock-up: http://krebsonsecurity.com
 +
 +EXERCISE EXERCISE EXERCISE
  
training/itu-ipv6/ttx_script1.txt · Last modified: 2016/05/25 18:39 by 127.0.0.1