Darkode: Recruitment Patterns and Transactional Features of “the Most Dangerous Cybercrime Forum in the World”

Dupont, Benoît; Côté, Anne‐Marie; Boutin, Jean-Ian; Fernandez, José M.

doi:10.1177/0002764217734263

Cited by 44 publications

(55 citation statements)

References 34 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Platforms could try to mitigate the risk of both rippers and law enforcement, whereas suppliers could specifically attempt to appear honest. The risk of dealing with rippers could partly be alleviated by platforms through admission and verification procedures (Dupont et al 2017;Hutchings and Holt 2015). The risk of detection by law enforcement is relevant for both platforms and potential hijackers.…”

Section: Conceptualisation and Coding Schemementioning

confidence: 99%

“…The dissemination of stolen credentials and the wider demand for stolen data has resulted in thriving online markets as well as platforms where stolen data are distributed for free (High-Tech Bridge 2014). Previous research on underground markets largely focused on the economy of these markets (e.g., Allodi 2017;Benjamin et al 2015;Franklin et al 2007;Holt, Smirnova, and Chua 2016a;Kigerl 2018) or on how trust issues in these anonymous environments are solved through reputation systems and admission procedures (e.g., Dupont et al 2017;Mell 2012;Motoyama et al 2011).…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Stolen account credentials: an empirical comparison of online dissemination on different platforms

Madarie

Ruiter

Steenbeek

et al. 2019

Journal of Crime and Justice

View full text Add to dashboard Cite

Account hijacking, i.e. illegitimately accessing someone else's personal online account, is on the rise and affects not only financial accounts, but the full spectrum of online accounts. To gain more insight in the illicit act of online dissemination of stolen account credentials, we systematically examined how such credentials were offered on three different types of online platforms where stolen credentials were disseminated and how offers varied by platform. We used web scrapes of these platforms for our comparative analyses. Our results demonstrate variation by platform in the type of information on accounts and account holders offered, the average asking price for credentials, and rules and services following a transaction. We conclude with policy implications and suggestions for future research based on the criminal event perspective.

show abstract

Section: Conceptualisation and Coding Schemementioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Stolen account credentials: an empirical comparison of online dissemination on different platforms

Madarie

Ruiter

Steenbeek

et al. 2019

Journal of Crime and Justice

View full text Add to dashboard Cite

show abstract

“…Armed with data from credit cards, fraudsters try to either initiate fraudulent transactions or sell the information in illicit marketplaces. However, buyers and sellers on such marketplaces know that it is only a matter of time before banks detect the fraud and cancel the cards and malicious actors have therefore begun to steal personal information, which, unlike credit card information, is not open to being changed or replaced (Dupont et al 2017). Significant data breaches at Yahoo and Equifax resulted in billions of records becoming available in illicit marketplaces (Smith 2018), making it possible for criminals to try to open new accounts or to obtain loans and other services under stolen identities.…”

Section: External Fraudmentioning

confidence: 99%

“…Fraudsters either sell such stolen information and the tools used to extract it in illicit marketplaces (Dupont et al 2017) or leverage the data for illegal purposes, such as using social engineering and spear-phishing attacks to trick targets into providing confidential information, perform fraudulent transactions, or make it possible to install malware on victims' computers (Butavicius et al 2016). Spear-phishing differs from traditional phishingwhich involves sending email to a massive number of individuals but expecting only a small responsein that attackers have personal information about their victims and can target specific individuals within an organization.…”

Section: Introductionmentioning

confidence: 99%

Fraud Risk Management: Using Fraud Analytics to Combat External and Insider Threats

Pomerleau

Auger-Perreault

2019

Encyclopedia of Security and Emergency Management

View full text Add to dashboard Cite

show abstract

“…Criminological inquiry on cybercrime has increased dramatically over the last decade, with some emphasis on economic-motivated offenses (e.g., Holt & Bossler, 2016; Yar, 2013). There are a range of cybercrimes that generate revenue for offenders through the theft and resale of information or the facilitation of fraudulent financial transactions, including phishing, computer hacking, and the use of malicious software that captures keystrokes and sensitive user information (e.g., Dupont et al, 2017; Holt, 2013; Holt & Lampke, 2010; Hutchings & Holt, 2015; Leukfeldt, 2017; Leukfeldt et al, 2017a, 2017b, 2017c, 2017d; van Hardeveld et al, 2017).…”

mentioning

confidence: 99%

Examining the Social Organization Practices of Cybercriminals in the Netherlands Online and Offline

Leukfeldt

Holt

2019

Int J Offender Ther Comp Criminol

View full text Add to dashboard Cite

This study focuses on the organization practices of networks of cybercriminals engaged in serious financial offenses, through a qualitative analysis of the Best and Luckenbill’s sociological framework. The study utilized data collected regarding 18 separate criminals investigations from the Netherlands. The results demonstrate that the participants within these networks operated at various stages of deviant sophistication. Surprisingly, the majority of networks exhibit organizational sophistication based on their division of labor and extended duration over time. In fact, most of this sample could be classified as “teams” or “formal organizations.” Furthermore, in contrast with prior studies, no loners were present and only a few networks could be classified as “colleagues” or “peers.”

show abstract

Darkode: Recruitment Patterns and Transactional Features of “the Most Dangerous Cybercrime Forum in the World”

Cited by 44 publications

References 34 publications

Stolen account credentials: an empirical comparison of online dissemination on different platforms

Stolen account credentials: an empirical comparison of online dissemination on different platforms

Fraud Risk Management: Using Fraud Analytics to Combat External and Insider Threats

Examining the Social Organization Practices of Cybercriminals in the Netherlands Online and Offline

Contact Info

Product

Resources

About