Gemini company logo

Gemini Advisory Blog

October 21, 2021
FIN7 Recruits Talent For Push Into Ransomware

The intelligence in this report was gathered by a source who was recruited by “Bastion Secure”. Gemini Advisory’s investigation and analysis of the source’s information has been ongoing for the past several months. Although sensitive information has been redacted from this report to protect the source, Gemini Advisory has provided law enforcement with the complete […]

Read more
September 23, 2021
Cybercriminals Abuse Donation Sites for Card Testing

Key Findings When selling stolen payment cards, dark web marketplaces or individual fraudsters often use “testing services”, which allow them to test whether a card is valid for conducting fraudulent activity or whether it has been flagged as stolen. Gemini analysts have uncovered a method in which cybercriminals use nonprofit organizations that accept donations to […]

Read more
August 11, 2021
Amid Boom in Phishing, Fraudsters Target Customers of Small and Mid-sized Banks

Key Findings Phishing attacks sharply increased in 2020 with the FBI reporting a 110% increase in phishing victims. Gemini Advisory identified a 72% increase in the volume of dark web forum posts referencing phishing and a 101% increase in the volume of compromised US payment cards with a high likelihood of being phished that were […]

Read more
June 16, 2021
How “HackMachine” Enables Fraud and Cyber Intrusions

The HackMachine cybercriminal software provides hackers with a simple tool to gain access to web applications and conduct schemes such as payment card fraud, ransomware, brute-forcing attacks, stealing login credentials, and more.

Read more
Gemini actors ransomware TTps
May 26, 2021
Ransomware Unmasked: Dispute Reveals Ransomware TTPs

Key Findings A recent “public” dispute on the dark web between actors affiliated with the “REvil” ransomware group and an actor offering to negotiate with victims has shed light on the rise of “ransomware consultants” and revealed the operational methods of ransomware hackers. Ransomware consultants research victims to gather intelligence for realistic ransom demands and […]

Read more
Who is Dark side Gemini
May 19, 2021
Who is DarkSide – The Group Behind the Colonial Pipeline Breach?

Key Findings The “DarkSide” ransomware group has made the news in 2021 due to its high-value targets such as the Colonial Pipeline and its high ransom amounts. It is considered to be one of the most prolific ransomware groups in the field. In August 2020, the DarkSide team launched its own public blog, “DarkSide Leaks”, […]

Read more

Choose your region:

Choose your state:

Schedule Call
This website uses cookies

We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services

Allow all cookies