Monday, June 17, 2024

Carding Action 2020 – Crooks selling/purchasing Compromised Card Data Arrested

We, at GBhackers usually report instances where the bad guys have had the upper hand in cyber-security, but today we are glad to report that the good guys have had a minor victory.

Law enforcement agencies from Italy and Hungary supported by the UK and Europol carried out a targeted operation named Carding Action 2020, to catch fraudsters selling and purchasing compromised card details on websites selling stolen credit card data and dark web marketplaces.

The objective of the operation was to mitigate and prevent losses for financial institutions and card holders. The operation was carried out over a period of 3 months, with 90,000 pieces of card data analysed and approximately €40 million ($47 million) worth of losses averted.

Europol played a crucial role in facilitating the coordination of information between law enforcement authorities and private sector partners. Europol analysts and experts also supported this operation by analyzing large volumes of data and sharing their expertise in the field of payment card fraud.

All of the 90,000 pieces of card data analysed by Group-IB, the private sector partner, included data of cards compromised by phishing websites, end devices infected with banking Trojans, hijacked e-commerce websites and JS-sniffers.

This is not the first instance of Group-IB unearthing a cybersecurity crime. Some of the other crimes unearthed by Group-IB are Silence, hacking of e-commerce sites by 3 Indonesian hackers, and crimes of hacking group MoneyTaker are some of their noteworthy exploits.

“Cybercrime can affect all aspects of our daily life, from paying in the supermarket, transferring money to our friends to using online communication tools or Internet of Things devices at home. Cybercriminals can attack us in different ways and this requires a robust response not only from law enforcement, but also from the private sector,” said Edvardas Šileris, Head of Europol’s European Cybercrime Centre (EC3)

The increase of e-skimming attacks targeting merchant Point of Sale (PoS) machines and e-commerce merchants influenced the significant increase of prevented losses.

E-Skimming or Magecart is a cybersecurity hacking technique that steals information as the consumers enter the data into an online shopping website.

Stay safe and hope for more such victories!

You can follow us on LinkedinTwitterFacebook for daily Cybersecurity, and hacking news updates.


Latest articles

Sleepy Pickle Exploit Let Attackers Exploit ML Models And Attack End-Users

Hackers are targeting, attacking, and exploiting ML models. They want to hack into these...

SolarWinds Serv-U Vulnerability Let Attackers Access sensitive files

SolarWinds released a security advisory for addressing a Directory Traversal vulnerability which allows a...

Smishing Triad Hackers Attacking Online Banking, E-Commerce AND Payment Systems Customers

Hackers often attack online banking platforms, e-commerce portals, and payment systems for illicit purposes.Resecurity...

Threat Actor Claiming Leak Of 5 Million Ecuador’s Citizen Database

A threat actor has claimed responsibility for leaking the personal data of 5 million...

Ascension Hack Caused By an Employee Who Downloaded a Malicious File

Ascension, a leading healthcare provider, has made significant strides in its investigation and recovery...

AWS Announced Malware Detection Tool For S3 Buckets

Amazon Web Services (AWS) has announced the general availability of Amazon GuardDuty Malware Protection...

Hackers Exploiting MS Office Editor Vulnerability to Deploy Keylogger

Researchers have identified a sophisticated cyberattack orchestrated by the notorious Kimsuky threat group.The...
Guru baran
Guru baran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Free Webinar

API Vulnerability Scanning

71% of the internet traffic comes from APIs so APIs have become soft targets for hackers.Securing APIs is a simple workflow provided you find API specific vulnerabilities and protect them.In the upcoming webinar, join Vivek Gopalan, VP of Products at Indusface as he takes you through the fundamentals of API vulnerability scanning..
Key takeaways include:

  • Scan API endpoints for OWASP API Top 10 vulnerabilities
  • Perform API penetration testing for business logic vulnerabilities
  • Prioritize the most critical vulnerabilities with AcuRisQ
  • Workflow automation for this entire process

Related Articles