The World Wide Web has radically altered the way business is conducted. The globalisation and…
“The demand for payment card data from banks in the Asia-Pacific region has always been high. However, many of these financial institutions have less sophisticated security and protection systems, comparing with their Western colleagues, and cybercriminals realized that cards in the Asia-Pacific region much better for them in comparison to cards from North America”, – experts say.
Since the dumps contained only CP (Card Present) data, this automatically excludes the possibility that the leak occurred through software skimmers (MageCart scripts) installed in hacked online stores.
Read also: New Hexane Cyber Group Attacks Middle East Industrial Enterprises
Experts believe that attackers could collect information about more than million cards using malware installed in Point-of-Sale (PoS) systems in stores or restaurants.
CP fraud involves collecting payment card information from in-person transactions. The most common way to do this is by installing malware into a system that has point-of-sale (POS) devices on its network. When a threat actor gains access to a system, they can install additional malware or backdoors in order to access card data. This POS malware can scrape random-access memory (RAM) to obtain card information from a device’s temporary memory before it is initially encrypted. The threat actor thus captures the desired plain text card data and can encrypt it and send it back to their own server.
According to Gemini Advisory experts, the black market has long been experiencing a high demand for data on cards from South Korea. This could serve as a reason for the growth of offers, so hackers could begin to intentionally attack targets in South Korea.
High demand also explains why scammers sell these dumps at a higher price: the researchers estimated that now the median price for one card is $ 40, which is significantly higher than the average price of South Korean CP data in darknet last year (approximately $ 24 per card).
Likudservices.com is a domain that tries to trick you into clik to its browser notifications…
Codebenmike.live is a site that tries to trick you into subscribing to its browser notifications…
Dabimust.xyz is a site that tries to trick you into subscribing to its browser notifications…
Phoureel.com is a domain that tries to trick you into subscribing to its browser notifications…
Lovelypush.club is a domain that tries to trick you into clik to its browser notifications…
Boyu.com.tr is a domain that tries to trick you into subscribing to its browser notifications…