Cyber Signals: Inside the growing risk of gift card fraud


Multifactor authentication Security operations In the ever-evolving landscape of cyberthreats, staying ahead of malicious actors is a constant challenge.

Microsoft Threat Intelligence has observed that gift cards are attractive targets for fraud and social engineering practices. Unlike credit or debit cards, there’s no customer name or bank account attached to them, which can lessen scrutiny of their potentially suspicious use in some cases and present cybercriminals with a different type of payment card surface to study and exploit. Microsoft has seen an uptick in activity from threat actor group Storm-0539, also known as Atlas Lion, around the United States holidays, including Memorial Day, Labor Day, Thanksgiving, Black Friday, and Christmas.

Read more…
Source: Microsoft


Sign up for our Newsletter


Related:

  • German police nick alleged admin of dark web gun sales site

    June 12, 2017

    German police have arrested a man they suspect of being the administrator of a dark net website. The site is said to have been used to buy a gun used in a 2016 mass murder. The unnamed 30-year-old man was arrested on 8 June in “south west Germany”, according to Sky News. The server used to host ...

  • Hackers Started Using “SambaCry Flaw” to Hack Linux Systems

    June 10, 2017

    Two weeks ago we reported about a 7-year-old critical remote code execution vulnerability in Samba networking software (re-implementation of SMB networking protocol) that allows a remote hacker to take full control of a vulnerable Linux and Unix machines. To know more about the SambaCry vulnerability (CVE-2017-7494) and how it works, you can read our previous article. At ...

  • New SEC enforcement chiefs see cyber crime as biggest market threat

    June 9, 2017

    Hackers are increasingly breaking into brokerage accounts to steal assets or make illegal trades, prompting U.S. securities regulators to start tracking cyber crimes more closely, two newly appointed enforcement officials said in an interview on Thursday. On Thursday, the U.S. Securities and Exchange Commission named Stephanie Avakian and Steven Peikin as new co-directors of enforcement. In an ...

  • Cybercrime agreement to be signed by global leaders

    June 3, 2017

    Global leaders are preparing to agree how police access digital evidence which may physically be located in another jurisdiction. The amendment to the Budapest Convention on Cybercrime will allow signature states’ police forces to receive digital evidence in criminal investigations in a timely manner – something those forces complain is currently a major problem. Since the opening ...

  • WikiLeaks Vault 7: CIA’s “Pandemic” Tool Replaces Files with Malware

    June 2, 2017

    WikiLeaks has released a new set of documents from its Vault 7 series, this time detailing a tool that the CIA allegedly uses to spread malware on a targeted organization’s network. Appropriately called “Pandemic,” the tool can install a file system filter driver on a network, replacing legitimate files with malicious payload when they are accessed ...

  • OneLogin Affected by Data Breach, Attacker May Have Decrypted Data

    June 2, 2017

    Access manager service OneLogin has announced that it has suffered a massive data breach that affects all users whose data was stored on the US servers, making for a rather nasty situation. “Our review has shown that a threat actor obtained access to a set of AWS keys and used them to access the AWS API ...