Outpost24, a leading innovator in cyber-risk management, has released a new report revealing the underground operation of Traffers, cybercriminal organisations reshaping the business of stolen credentials.
The Rising Threat of Traffers Report, compiled by Outpost24’s Threat Intelligence team, KrakenLabs, provides a deep dive into the credential theft ecosystem and encourages organisations to evaluate their security measures against these evolving threats.
Stolen credentials are a major problem for organisations, causing nearly 50% of all data breaches. While businesses are still trying to figure out how to fix the password problem, cybercriminals are organising and innovating. The increased professionalisation of cybercriminal groups, specifically the rise of Traffers, is the latest threat against businesses.
Traffers are highly organised cybercriminal groups that spread different types of malware families with the goal of exfiltrating credentials or profit. To spread the malware as far and wide as possible, they formed an industry-like structure of product and service providers, as well as dedicated marketplaces, in the form of telegram channels to facilitate the sale of those credentials.
To increase their success rate, Traffers target their would-be victims by driving their Internet traffic with Google and Facebook Ads to fraudulent content. Traffers have developed a business model that involves specific recruitment, training and compensation, all of which distinguish them from other cybercriminals.
As the underground economy circulates, current security measures may fall behind. Organisations need to consider the Traffers attack chain to stay protected against the latest threats.
Click below to share this article
