Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://infosec.exchange/users/briankrebs/statuses/111580066984598797">BrianKrebs (briankrebs@infosec.exchange)'s status on Sunday, 17-Dec-2023 00:17:18 JST</a><a href="https://infosec.exchange/@briankrebs" title="briankrebs@infosec.exchange"><img src="https://gnusocial.jp/avatar/21764-48-20231108132353.webp" width="48" height="48" alt="BrianKrebs" style="position: absolute; left: 0; top: 0;">BrianKrebs</a></section><article><p>I can't even begin to count the hours of research that went into this story. Frustrated that most of that research went in the wrong direction for so long. But also very excited to share what I found, and that I finally have something to show for it all:</p><p>On Dec. 18, 2013, KrebsOnSecurity broke the news that U.S. retail giant Target was battling a wide-ranging computer intrusion that compromised more than 40 million customer payment cards over the previous month. The malware used in the Target breach included the text string “Rescator,” which also was the handle chosen by the cybercriminal who was selling all of the cards stolen from Target customers. Ten years later, KrebsOnSecurity has uncovered new clues about the real-life identity of Rescator.</p><p><a href="https://krebsonsecurity.com/2023/12/ten-years-later-new-clues-in-the-target-breach/" rel="nofollow noreferrer">https://krebsonsecurity.com/2023/12/ten-years-later-new-clues-in-the-target-breach/</a></p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/2461782#notice-4870492">In conversation</a><time datetime="2023-12-17T00:17:18+09:00" title="Sunday, 17-Dec-2023 00:17:18 JST">about a year ago</time> <span>from <span><a href="https://infosec.exchange/@briankrebs/111580066984598797" rel="external" title="Sent from infosec.exchange via ActivityPub">infosec.exchange</a></span></span><a href="https://infosec.exchange/@briankrebs/111580066984598797">permalink</a><h4>Attachments</h4><ol><li><label><a rel="external" href="https://gnusocial.jp/attachment/1974891">A screenshot of a cybercrime forum posting circa June 2014 from Rescator, advertising a first-hand base of several million payment cards freshly stolen from a breach at P.F. Chang's (in 2014). The ad features a roman wreath surrounding the text: "Valid 100% rate. Super Fresh Dumps. Database: Ronald Reagan. Rescator.cc. Update you've been waiting for!"</a></label><br><a href="https://media.infosec.exchange/infosec.exchange/media_attachments/files/111/580/058/102/358/141/original/18dbb643e73a6fba.png" rel="external">https://media.infosec.exchange/infosec.exchange/media_attachments/files/111/580/058/102/358/141/original/18dbb643e73a6fba.png</a></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
BrianKrebs (briankrebs@infosec.exchange)'s status on Sunday, 17-Dec-2023 00:17:18 JST BrianKrebs
I can't even begin to count the hours of research that went into this story. Frustrated that most of that research went in the wrong direction for so long. But also very excited to share what I found, and that I finally have something to show for it all:
On Dec. 18, 2013, KrebsOnSecurity broke the news that U.S. retail giant Target was battling a wide-ranging computer intrusion that compromised more than 40 million customer payment cards over the previous month. The malware used in the Target breach included the text string “Rescator,” which also was the handle chosen by the cybercriminal who was selling all of the cards stolen from Target customers. Ten years later, KrebsOnSecurity has uncovered new clues about the real-life identity of Rescator.
https://krebsonsecurity.com/2023/12/ten-years-later-new-clues-in-the-target-breach/
In conversationabout a year ago from infosec.exchangepermalink
Attachments
1. A screenshot of a cybercrime forum posting circa June 2014 from Rescator, advertising a first-hand base of several million payment cards freshly stolen from a breach at P.F. Chang's (in 2014). The ad features a roman wreath surrounding the text: "Valid 100% rate. Super Fresh Dumps. Database: Ronald Reagan. Rescator.cc. Update you've been waiting for!"
  https://media.infosec.exchange/infosec.exchange/media_attachments/files/111/580/058/102/358/141/original/18dbb643e73a6fba.png

Public

Embed Notice

HTML Code

Corresponding Notice