Blog


Who is DarkSide – The Group Behind the Colonial Pipeline Breach?

05 / 14 / 2021 Key Findings The “DarkSide” ransomware group has made the news in 2021 due to its high-value targets such as the Colonial Pipeline and its high ransom amounts. It is considered to be one of the most prolific ransomware groups in the field. In August 2020, the DarkSide team launched its […]

Read more

Breached Online Ordering Platforms Expose Hundreds of Restaurants

04 / 29 / 2021 Key Findings In the past 6 months, Gemini has reported on breaches of 5 companies that serve as online ordering platforms for restaurants through centralized platforms. This has led to the exposure of approximately 343,000 payment cards. Three of the affected platforms — Easy Ordering, MenuSifu, and E-Dining Express — […]

Read more

Online Gift Card Shop Breached: 330k Payment Cards and $38m in Gift Cards Exposed

04 / 06 / 2021 Key Findings In February 2021, a cybercriminal actor sold 330,000 stolen payment cards and 895,000 stolen gift cards with an approximate total value of $38 million. Gemini determined the source of the stolen payment cards was a breach of the online discount gift card shop Cardpool.com. Gemini assesses with moderate […]

Read more

Recorded Future Signs Definitive Agreement to Acquire Gemini Advisory

The World’s Largest Intelligence Provider Expands into the Fraud Analytics Market (original announcement found here) BOSTON — March 16, 2021 — Recorded Future, the world’s largest provider of intelligence for enterprise security, today announced it has entered into an agreement to acquire revolutionary fraud analytics provider, Gemini Advisory, in a cash and equity transaction valued at […]

Read more

Cybercriminals Adapt to Bypass 3D Secure

03/03/2021 Key Findings Gemini has found several individuals on dark web forums engaged in activities related to bypassing the 3D Secure (3DS) security measure, which is a protocol designed to be an additional security layer for online credit and debit card transactions. Cybercriminal tactics to circumvent the 3DS measures include various social engineering techniques and […]

Read more

Alleged Hydra Market Operators Identified

02/19/2021 Key Findings An anonymous author on the hydra[.]expert domain claimed to have uncovered the true identities of the individuals running the Hydra marketplace, one of the largest Russian-language dark web markets for drugs. Gemini has translated and analyzed this investigation, although we have not confirmed the entirety of the evidence. The anonymous author alleges […]

Read more