Attributing E-Crime Syndicates Adds Critical Context
Huddled around keyboards half a world away, a shadowy group of technically-savvy criminals devised techniques to hide from system administrators and run internet scams that defrauded a client out of hundreds of thousands of dollars in revenue every month.
Nisos operators have spent years using advanced cyber and OSINT investigative techniques to map out the activities of similarly shadowy opponents. This gave us a deep understanding of the adversarial mindset, which combined with our command of cyber tools and proprietary datasets, made us the perfect partner for this client.
Nisos researchers analyzed open-source reporting and utilized technical tools and niche datasets to provide assessments on the fraud ring and their operations. We did not need access to any internal Client metadata.
Starting with only a few data points, we uncovered a sophisticated network that was using software to “cloak” their activity from the client’s system administrators. Each piece of new data spun off further investigations and insights about the attackers. Soon we had identified the scam’s ring-leader, the personal information of multiple network members, and a series of other fraudulent schemes the group was running.
After we identified the main culprits in the network and the techniques they were using to mask their actions, we mapped the technical signatures of each of those actors as well as the websites and accounts they used. We attributed the true identities of the actors and provided our assessment of how these signatures could be used to alert the client of future activity by that network.
Our detailed report identifying the bad actors as well as their tactics, techniques and procedures provided the client with multiple options. The client was able to take legal action against the actors, remove them from their platform, harden their defenses against future attacks, and take action against other groups using similar techniques. All in all, work like this can save clients hundreds of thousands of dollars.
If your company has similar issues with e-crime actors, contact us for a free consultation.
Nisos is the Managed Intelligence™ company. Our services enable security, intelligence, and trust and safety teams to leverage a world-class intelligence capability tailored to their needs. We fuse robust data collection with a deep understanding of the adversarial mindset delivering smarter defense and more effective response against advanced cyber attacks, disinformation, and abuse of digital platforms.
For additional information, contact firstname.lastname@example.org