Buying Bot-Stolen Logs: Marketplaces Make It ‘2easy’
Blockchain & Cryptocurrency
,
Cryptocurrency Fraud
,
Cybercrime
Genesis Market, 2easy, Russia House Offer Inexpensive Access to Stolen Credentials
A variety of underground markets exist to help malware-wielding criminals monetize their attacks, including via log marketplaces such as Genesis, Russian Market and 2easy, which offer for sale batches of data that can be used to emulate a victim, whether it’s a consumer, an enterprise IT administrator or anyone in between.
See Also: Live Webinar | Nuclear Ransomware 3.0: We Thought It Was Bad and Then It Got Even Worse
Such marketplaces are a reminder that extensive information continues to be harvested by information-stealing malware, such as RedLine and AZORult.
These infostealers often get distributed via booby-trapped emails and websites and after infecting a PC, they can exfiltrate many different types of data, including passwords.
Experts say the most valuable data, such as cryptocurrency wallets and stored payment card data, often gets siphoned off first by attackers. Sometimes, they use this information themselves, for example, to try and steal all of the bitcoins from a victim’s cryptocurrency wallet. In other cases, however, attackers may be wielding information-stealing malware they have obtained from a service…
