Category: Blog


Second Wave of Click2Gov Breaches Hits United States

By Stas Alforov and Christopher Thomas Key Findings In December 2018, Gemini Advisory covered a breach of Click2Gov, a self-service bill-pay portal for utilities, community development, and parking tickets, which compromised over 300,000 payment card records from dozens of cities across the United States and Canada between 2017 and late 2018. Gemini has now observed […]

Read more

South Korean Breach Exposes Over 1 Million Payment Cards

By Stas Alforov and Christopher Thomas Key Findings While the entire Asia Pacific (APAC) region is experiencing a noticeable uptick in attacks against brick-and-mortar and e-commerce businesses, South Korea has emerged as the largest victim of Card Present (CP) data theft by a wide margin.  Gemini Advisory observed a spike in South Korean-issued CP records […]

Read more

AMCA Breach May Be Largest Medical Breach in 2019

By Stas Alforov and Christopher Thomas Key Findings On February 28, 2019, Gemini Advisory identified a large number of compromised payment cards in the dark web containing personally identifiable information (PII), such as dates of birth (DOBs), Social Security numbers (SSNs), and physical addresses.   A thorough analysis indicated that the information was likely stolen […]

Read more

India: Rising Cybercrime Frontier

By Stas Alforov and Christopher Thomas Key Findings India, with the world’s second largest population and rising internet penetration, presents a significant attack surface to cybercriminal threat actors. A combination of lucrative targets and insufficient defense measures makes many Indian institutions attractive to hackers. Over 3.2 million Indian payment card records have been compromised and […]

Read more

Ongoing Supply of Compromised Pakistani Payment Cards Suggests Meezan Bank Breach

By Stas Alforov and Christopher Thomas Key Findings In recent months, several security organizations have reported on massive payment card fraud targeting Pakistani financial institutions. Shortly after the initial breach was detected in October 2018, several banks took steps to mitigate damages, reportedly including issuing alerts to customers and blocking online or international use of […]

Read more

Japanese Payment Card Fraud Contrasts with Regional Patterns

By Stas Alforov Key Findings Based on the proprietary Gemini Advisory telemetry data collected from various dark web sources over several years, we have determined that in 2018, nearly 1.4 million cards were compromised in the East Asia region, nearly a 100% increase from 2017. Despite the overarching trend of increased fraud in East Asia, […]

Read more