Overview
Explore the dark web's cybercrime ecosystem in this Security BSides London conference talk. Dive into the tools and techniques used by both skilled and unskilled adversaries to launch complex attacks. Learn about the availability of stolen credit card information, phishing kits, and malware on dark web marketplaces. Examine various ransomware strains, including Earth Ransomware and Philadelphia, and their features like timers and "mercy" options. Understand the ease of acquiring and deploying these tools, and the potential threats they pose to individuals and organizations. Gain insights into proactive defense strategies to protect against these evolving cyber threats. Discover the inner workings of criminal operations, from infected documents to DDoS attacks, and the support systems behind them. Conclude with final thoughts on the implications of this accessible cybercrime landscape for organizational security.
Syllabus
Introduction
The Dark Web
Buying Stolen Credit Cards
Scams
BT Fishing Kit
Additional Verification
Criminal Mastermind
Infected Document
Dock Builders
Anka Log
BetaBot
BetaBot Panel
Tasks
DDoS
SamSam Gang
Proactive Defense
Ransomware
Earth Ransomware
Rann
Nemesis
Support
Live ransomware
Build guide
Speed
Attacked Extensions
Ransomware Core
Philadelphia
Timers
Give Mercy
Its Time for a Vacation
New Passport
Final Thoughts
Taught by
Security BSides London