Sleuthcon: Cybercrime emerges in Morocco and regulation enforcement will get inventive

Morocco as an rising cybercrime originator

Though cybercrime operations are a world phenomenon, most financially motivated cybercriminals function from a well-understood list of countries, together with China, Russia, Ukraine, the US, Romania, and Nigeria. However at this yr’s Sleuthcon, a brand new nation emerged that threatens to interrupt into the ranks of high cybercrime havens: Morocco.

Microsoft researchers recently uncovered a brand new, quiet, and productive group it calls Storm-0539, also called Atlas Lion, working out of Morocco. The group engages in fee and reward card fraud. However as a substitute of counting on malware or malicious tooling, as could be present in peculiar point-of-sale bank card fraud, Storm-0539 represents an evolution in cybercrime as a result of it exploits cloud identities to focus on retailers to print their very own reward playing cards, typically in hefty quantities.

Utilizing worker directories and schedules, contact lists, and electronic mail inboxes, Storm-0539 targets retail workers through smishing or phishing to achieve entry to the reward card enterprise course of, print their very own reward playing cards after which redeem the playing cards, promote them on black market web sites or use mules to money out the playing cards.