The Evolving Threat of Cybercrime
Introduction
In recent years, cybercrime has become an increasingly serious threat. Hackers are constantly finding new ways to exploit vulnerabilities and steal sensitive information. One such example is the collaboration between cybercriminals in Turkey and Russian émigré hackers, which has led to a significant increase in online scams and fraud. This article explores the transnational nature of cybercrime and the impact it has on individuals and communities around the world.
Russian Hackers Seek Refuge in Turkey
In September of last year, thousands of Russian men, many of whom were trained computer engineers, fled to Turkey to escape military conscription for the war in Ukraine. Once in Turkey, some of these individuals turned to online scams and fraud as a means of financial support. They partnered with established Turkish counterparts to avoid detection and launder their earnings. Together, they have flooded the online market with tens of millions of freshly stolen personal credentials, posing a significant threat to cybersecurity.
The Rise of Transnational Cybercrime
One of the notable aspects of this collaboration is the transnational nature of the criminal activity. The hackers from Russia and Turkey have formed cartels and syndicates that undermine the monopolies of traditional Russian and Belarusian cybercriminal gangs. This evolution in the organization of cybercrime has made it more challenging for law enforcement agencies to combat these illegal activities.
While the Russian-speaking cybercriminals tend to operate openly due to lax enforcement of regulations by their governments, the Turkish-based gangs employ sophisticated online techniques, such as cloaking, to evade detection. The recent surge in cybercrime activity prompted Turkish police to launch investigations, but these newly formed gangs are careful not to target Turks in order to minimize scrutiny from local authorities.
The Underground Cloud of Records
The preferred marketplace for cybercriminals, known as the underground cloud of records, has been inundated with stolen credit cards, passwords, and login credentials in recent months. Cybersecurity specialists have discovered this trove of stolen data, which is distributed to customers who subscribe to data streams on Telegram groups. The data is collected using a malware called Redline, which appears to evade most popular antivirus software.
What makes the data collected by Redline particularly valuable is its freshness. Each update contains a package with hundreds or thousands of newly stolen logs, keeping the stolen data ‘hot’ and almost real-time. Screenshots of conversations with a Turkish hacker reveal the vast number of Telegram groups selling access to this scraped data at surprisingly low prices. The ease of access and affordability have contributed to the rapid growth of cybercrime.
Exploiting Cookies and Personalized Theft
In addition to stealing credit card information and login credentials, the cybercriminals also target browser cookies. These cookies contain small pieces of personally identifiable code that reside in people’s browsers, allowing hackers to impersonate victims online. This enables them to copy credit card details that are saved for easier online shopping.
The stolen data is not limited to financial information. Cybersecurity specialists have also discovered conversations among cybercriminals discussing the conversion of stolen cryptocurrency into Turkish lira and even plans to purchase real estate in order to obtain Turkish passports. These insights provide a glimpse into the extent of the criminal activities and the level of organization among the hackers involved.
The Rapid Increase in Cybercrime
The Turkish cybersecurity specialist who infiltrated one of the Telegram groups pointed out that while these hackers may not be considered high-level, they are highly efficient and have quickly learned to automate their operations. Their output has rapidly increased, posing an even greater threat to individuals, businesses, and governments worldwide.
Further interactions with the group revealed their professionalism and marketing skills. Additionally, a Turkish hacker even offered restaurant recommendations in Istanbul, showcasing the blend of criminality and everyday life for these cybercriminals. The ties between the Russian hackers and their Turkish counterparts remain somewhat mysterious, emphasizing the importance of talent and skills over personal connections.
Closing Thoughts: The Need for Heightened Cybersecurity
The collaboration between Russian émigré hackers and cybercriminals in Turkey highlights the evolving nature of cybercrime. It showcases the increased sophistication and organization among hackers, as well as the challenges faced by law enforcement agencies in combating these crimes.
As the world becomes increasingly interconnected, the need for heightened cybersecurity measures is more important than ever. Individuals and businesses must remain vigilant and proactive in protecting their digital assets. Governments and law enforcement agencies must also work together to strengthen cybersecurity laws and improve cooperation in combating transnational cybercrime.
Summary
The collaboration between Russian émigré hackers and Turkish cybercriminals has led to a significant increase in cybercrime activity. These hackers have flooded the online market with freshly stolen personal credentials, bypassing traditional Russian and Belarusian cybercriminal gangs. The transnational nature of this collaboration makes it difficult for law enforcement agencies to combat these crimes effectively.
The underground cloud of records, the favored marketplace for cybercriminals, has been inundated with stolen credit cards, passwords, and login credentials. The use of malware, such as Redline, enables hackers to collect and distribute this data efficiently. Additionally, hackers target browser cookies to gain unauthorized access and impersonate victims online.
To combat the rising threat of cybercrime, individuals, businesses, and governments must prioritize cybersecurity measures. Increased awareness, robust cybersecurity systems, and proactive law enforcement mechanisms are essential in safeguarding digital assets and ensuring the protection of sensitive information.
—————————————————-
| Article | Link |
|---|---|
| UK Artful Impressions | Premiere Etsy Store |
| Sponsored Content | View |
| 90’s Rock Band Review | View |
| Ted Lasso’s MacBook Guide | View |
| Nature’s Secret to More Energy | View |
| Ancient Recipe for Weight Loss | View |
| MacBook Air i3 vs i5 | View |
| You Need a VPN in 2023 – Liberty Shield | View |
Get free cybersecurity updates
We will send you a myFT Collection Daily e-mail with the list of the latest news Cyber security news every morning.
Cybercriminals in Turkey have teamed up with recently arrived Russian émigré hackers to flood a once-moribund online market with tens of millions of freshly stolen personal credentials, an evolution in the transnational nature of such fraud.
Thousands of men, many of them trained computer engineers, fled Russia for Turkey last September after President Vladimir Putin ordered military conscription for the war in Ukraine.
Some of them, Turkish police and security researchers said, have turned to relatively low-level online scams and fraud to support themselves, teaming up with established Turkish counterparts to avoid detection, launder their earnings and sell computer-harvested credentials around the world in European countries. market.
The recent spate of activity has prompted Turkish police to investigate, said two officers, who asked not to be named, although criminals use sophisticated online techniques, known as cloaking, to evade detection.
In contrast, criminals based in Russian-speaking countries tend to operate relatively openly, as their governments’ enforcement of regulations has been lax.
They said that in recent months cybercriminals have exploited each other to create cartels that are undermining the monopolies of the most notorious traditional Russian and Belarusian gangs
“In less than a year, reports have increased a lot,” said one of the officials, based in Antalya, a coastal region popular with Russians.
The second police official noted that these newly formed gangs are careful not to prey on Turks to minimize scrutiny from local authorities.
Turkish police did not respond to a request for comment.
Cybercriminals’ favorite marketplace, dubbed the underground cloud of records by security researchers, has been inundated with tens of millions of stolen credit cards, passwords and login credentials in recent months.
This trove, discovered by cybersecurity specialist Osher Assor at Auren Cyber Israel, leverages sophisticated code that sends newly stolen credentials to large numbers of customers who subscribe to data streams on Telegram groups.
The data is collected by common malware that appears to evade most popular antivirus software. Assor believes the malware, nicknamed Redline, is being inadvertently downloaded by people using illegal websites to play video games or pirated versions of popular software.
But what makes the data collected by Redline particularly valuable is that it also steals cookies, or small pieces of personally identifiable code, that reside in people’s browsers, allowing hackers to impersonate the victim online and even copy credit cards that people save on making online shopping easier.
“The data is more valuable because it is fresh, almost real time,” Assor said. “Password swapping is nothing new, but what is unique here is that the information arrives ‘fresh’: each update contains a package with hundreds or thousands of logs stolen in the last few hours, keeping the cookies ‘hot’.”
In screenshots of conversations with a Turkish hacker that Assor shared with the Financial Times, hundreds of Telegram groups appear to be selling access to the freshly scraped data, often for as little as $50 a week. Each package has thousands of entries: one screenshot showed 76 million different data points, collected for ease of use.
A Turkish cybersecurity specialist, who asked to remain anonymous because contact with hackers is a legal gray area in Turkey, said he had hacked into one of these Telegram groups by masquerading as a buyer.
For months, he watched newly arrived Russian hackers teach their Turkish counterparts sophisticated code to harvest the vast amounts of data they collected, while Turkish criminals exploited their contacts in Western Europe, particularly Germany, to secure prices best for efficient purchases. organized data sets.
In other chats, he witnessed a group celebrating massive thefts, discussing how to convert stolen cryptocurrency into Turkish lira, and even working out ways to purchase real estate to receive a Turkish passport.
“None of these are high-level hackers, but they are very efficient and have learned to automate things very well – their output is increasing rapidly,” he said.
Assor’s interactions with the group show the same: professional marketing and even personalized advice. In one case, a Turkish hacker even gave him restaurant recommendations in Istanbul.
But when asked about his ties to the Russians, the hacker demurred.
“No, brother,” he replied. “I don’t want to know, the important thing is not to know [their] face, but being with talented people.
—————————————————-