Category: Blog


Ransomware Unmasked: Dispute Reveals Ransomware TTPs

05 / 26 / 2021 Key Findings A recent “public” dispute on the dark web between actors affiliated with the “REvil” ransomware group and an actor offering to negotiate with victims has shed light on the rise of “ransomware consultants” and revealed the operational methods of ransomware hackers. Ransomware consultants research victims to gather intelligence […]

Read more

Who is DarkSide – The Group Behind the Colonial Pipeline Breach?

05 / 14 / 2021 Key Findings The “DarkSide” ransomware group has made the news in 2021 due to its high-value targets such as the Colonial Pipeline and its high ransom amounts. It is considered to be one of the most prolific ransomware groups in the field. In August 2020, the DarkSide team launched its […]

Read more

Breached Online Ordering Platforms Expose Hundreds of Restaurants

04 / 29 / 2021 Key Findings In the past 6 months, Gemini has reported on breaches of 5 companies that serve as online ordering platforms for restaurants through centralized platforms. This has led to the exposure of approximately 343,000 payment cards. Three of the affected platforms — Easy Ordering, MenuSifu, and E-Dining Express — […]

Read more

Online Gift Card Shop Breached: 330k Payment Cards and $38m in Gift Cards Exposed

04 / 06 / 2021 Key Findings In February 2021, a cybercriminal actor sold 330,000 stolen payment cards and 895,000 stolen gift cards with an approximate total value of $38 million. Gemini determined the source of the stolen payment cards was a breach of the online discount gift card shop Cardpool.com. Gemini assesses with moderate […]

Read more

Recorded Future Signs Definitive Agreement to Acquire Gemini Advisory

The World’s Largest Intelligence Provider Expands into the Fraud Analytics Market (original announcement found here) BOSTON — March 16, 2021 — Recorded Future, the world’s largest provider of intelligence for enterprise security, today announced it has entered into an agreement to acquire revolutionary fraud analytics provider, Gemini Advisory, in a cash and equity transaction valued at […]

Read more

Cybercriminals Adapt to Bypass 3D Secure

03/03/2021 Key Findings Gemini has found several individuals on dark web forums engaged in activities related to bypassing the 3D Secure (3DS) security measure, which is a protocol designed to be an additional security layer for online credit and debit card transactions. Cybercriminal tactics to circumvent the 3DS measures include various social engineering techniques and […]

Read more