Hey there, FixMeFans and StartMeStars! We’re back with another edition of our weekly roundup where we deliver the most recent comings and goings of the cybersecurity world.
This week we’re coming to you with news about the shutdown of the most notorious stolen credit card online marketplace, how the FBI is investigating claims that Nancy Pelosi’s laptop is being sold to Russia, and how a new malware strain has been linked to the SolarWinds incident.
Founded in 2014, Joker’s Stash quickly became the go-to place for cybercriminals to buy and exchange stolen credit card information. However, despite years of success, the founder has announced that the site will be permanently shutting down.
In an announcement posted to several underground cybercriminal forums, a Joker’s Stash representative wrote that they would be permanently shutting down the website as of February 15th, 2021. While Joker’s Stash seems to have been a profitable gig (raking in nearly $1 billion over its 6 year run), operations seem to have dwindled over the past several months, with volume down nearly 250% by November.
Joker’s Stash customers previously complained of declining credit card quality, but the final nail in the coffin for the dark web marketplace was when the FBI seized four of its domain names, effectively tarnishing the site’s once secure image.
Curious? You can read more about Joker’s Stash here.
Following the Capitol Hill riots on January 6th, the FBI are currently investigating a tip-off that a woman had stolen a laptop from Speaker Nancy Pelosi’s office with the intention of selling it to Russia.
The suspect, Riley June Williams, is being investigated for charges of entering a restricted building and disorderly conduct during the Capitol Hill riot. The FBI is also investigating claims by a “former romantic partner” that Williams had stolen Pelosi’s laptop with the intent to send it to a friend in Russia, who would then sell the laptop to a Russian intelligence agency.
While there are claims that indicate that the transfer “fell through”, a recent affidavit reports that Williams has since fled, packing her bags and deleting all her social media.
You can read up the current investigation here!
Cybersecurity firm Symantec announced that it had discovered another malware strain linked to the SolarWinds hack that recently shook the cybersecurity world. The malware strain, identified as Raindrop, joins the list of the other known malware strains: Sunspot, Sunburst, and Teardrop.
The SolarWinds hack initially came as a huge shock to the cybersecurity world, mostly due to how large scale the breach was. While authorities allege that the attack had been caused by an elite Russian hacking group, the breadth of the attack is still being determined; although the majority of those affected have been US federal organizations, a handful of private technology organizations have also been breached.
The newest malware strain, Raindrop, was used only during the very last stages of an intrusion, deployed only on the networks of very few selected targets. However, even if the number of victims is small, the stakes are incredibly high, especially when the victims are within the US government.
That’s all for this week’s roundup folks! We hope you’re staying safe with all that’s going on, especially when it comes to your cybersecurity!