Skip to Content

Tag: thedarkoverlord

Thedarkoverlord Out to KickAss and Cash Out Their Data

A user claiming to be the notorious darkoverlord extortionist threat actor has appeared on a dark web cybercriminal forum offering breached datasets for sale. In this blog, Digital Shadows (now ReliaQuest) analyzes whether this is a case of a copy-cat actor hoping to profit from thedarkoverlord name, or whether this marks a genuine return for […]

ShadowTalk Update – 08.13.2018

In this week’s ShadowTalk it’s all things phishing. Rose Bernard and Simon Hall join Rafael Amado to discuss the recent arrest of three alleged members of the FIN7 organized criminal group. The team look over the United States Department of Justice’s indictment, focusing on how FIN7 use social engineering and sophisticated phishing to great effect, […]

Shadow Talk Update – 03.26.2018

This week’s Shadow Talk discusses what the Cambridge Analytica revelations mean for disinformation and personal privacy, updates to Trickbot, Zeus Panda and Remnit trojans, City of Atlanta suffers from ransomware attack, and Dragonfly campaign attribution to Russian Government. US pins energy-sector attacks on Russia-backed threat group The United States government has named the threat group […]

Shadow Talk Update – 02.26.2018

In this week’s podcast, the Digital Shadows (now ReliaQuest) Research Team discuss attacks against banks using the SWIFT network, business email compromise (BEC) threats, the state of ransomware, as well as new activity by thedarkoverlord and APT-37.   Two new thefts using SWIFT network confirmed Over the past week, an unidentified Russian bank and India’s […]

“Air cover” – cybercriminal marketing and the media

For a new or relatively unknown cybercriminal actor looking to sell compromised data, attracting buyers can be a difficult task. Actors without established reputations are significantly less likely to be trusted and, as a result, are unlikely to be on other actors’ buying radars. Recent months have seen a number of actors adopting an approach […]

Thedarkoverlord – losing his patients?

In late June 2016, we observed a spate of attacks allegedly conducted by a vendor named “thedarkoverlord” on the dark web marketplace the Real Deal.  This vendor has added multiple listings for information claimed to be stolen from U.S. healthcare organizations. These listings were characterized by the focus on US healthcare organizations, the unusually high […]