Cybercriminal activity remains a robust market economy, and it’s not surprising it’s become the arm of powerful, organized groups.
There has been no lull in the overall volume of threats, and low-level attacks, often taking place in view of security researchers and law enforcement on the dark web.
A small subset of professional criminal actors is responsible for the bulk of cybercrime-related damage, employing tools and techniques as sophisticated, targeted and insidious as most nation-state actors.
These sophisticated and capable criminal gangs operate largely outside of the dark web, although they may leverage low-level criminal tools occasionally when it serves their purposes.
At the same time, The boundary between nation-state and cybercriminal actors continues to blur. Ransomware continues to be a serious threat. There has been no significant decrease in the volume of ransomware, banking malware, point-of-sale (POS) memory scrapers or other threats available for purchase on underground forums.
Cybercriminal activity remains a robust market economy with sophisticated criminal gangs earning millions of dollars of revenue through stolen payment card data.
Sophisticated criminal gangs have combined advanced social engineering (expertise in deception and manipulation) and network intrusion techniques with point-of-sale (POS) malware to generate millions of dollars of revenue through stolen payment card data. Cybercriminals are also clever about monetizing card data even after the theft has been discovered, and credit card dump sites such as JokerStash have come under scrutiny as a possible way for sophisticated criminals to do just that. Cybercriminal activity remains a robust market economy because it is adaptive and constantly evolving, to stay ahead of it, it is imperative that organizations develop a holistic understanding of the landscape and how it relates to them.