Gemini Advisory

April 30, 2019

Data: E-Retail Hacks More Lucrative Than Ever

This post was originally published on this siteFor many years and until quite recently, credit card data stolen from online merchants has been worth far less in the cybercrime underground than cards pilfered from hacked brick-and-mortar stores. But new data suggests that over the past year, the economics of supply-and-demand have helped to double the average price fetched by card-not-present data, meaning cybercrooks now have far more incentive than ever to target e-commerce stores. Traditionally, the average price for card data nabbed from online retailers — referred to in the underground as “CVVs” — has ranged somewhere between $2 and […]
October 15, 2019

“BriansClub” Hack Rescues 26M Stolen Cards

This post was originally published on this site“BriansClub,” one of the largest underground stores for buying stolen credit card data, has itself been hacked. The data stolen from BriansClub encompasses more than 26 million credit and debit card records taken from hacked online and brick-and-mortar retailers over the past four years, including almost eight million records uploaded to the shop in 2019 alone. An ad for BriansClub has been using my name and likeness for years to peddle millions of stolen credit cards. Last month, KrebsOnSecurity was contacted by a source who shared a plain text file containing what was […]
October 29, 2019

Takeaways from the $566M BriansClub Breach

This post was originally published on this siteReporting on the exposure of some 26 million stolen credit cards leaked from a top underground cybercrime store highlighted some persistent and hard truths. Most notably, that the world’s largest financial institutions tend to have a much better idea of which merchants and bank cards have been breached than do the thousands of smaller banks and credit unions across the United States. Also, a great deal of cybercrime seems to be perpetrated by a relatively small number of people. In September, an anonymous source sent KrebsOnSecurity a link to a nearly 10 gb […]
November 26, 2019

Sale of 4 Million Stolen Cards Tied to Breaches at 4 Restaurant Chains

This post was originally published on this siteOn Nov. 23, one of the cybercrime underground’s largest bazaars for buying and selling stolen payment card data announced the immediate availability of some four million freshly-hacked debit and credit cards. KrebsOnSecurity has learned this latest batch of cards was siphoned from four different compromised restaurant chains that are most prevalent across the midwest and eastern United States. An advertisement on the cybercrime store Joker’s Stash for a new batch of ~4 million credit/debit cards stolen from four different restaurant chains across the midwest and eastern United States. Two financial industry sources who […]