The rise of Savastan0: a look into a growing carding marketplace

Ylabs2025-02-13T15:54:06+01:00

Introduction

Carding is a sort of fraud in which unauthorized individuals, referred to as "carders," utilize stolen payment card information for their own benefit. This can involve not only making unlawful withdrawals and transactions, but also selling card information to other criminals in order to make money. First of all, it is useful giving a look to carding main terminology: Fullz: it...

Zyxel vulnerability exploited by “Helldown” ransomware group

Ylabs2025-01-21T10:29:34+01:00

Introduction

As Yarix's Incident Response Team, our responsibilities are to manage critical issues related to cyber-attacks carried out by cybercriminals, intervening promptly in order to guarantee security to victim companies and to minimize latent risks, analyzing the systems within their infrastructures and indicating precise remediation actions capable of re-establishing a state of security sufficient for normal operational recovery. In the course of...

Behind The Scenes: Yarix Approach to Mobile Security

Ylabs2024-12-06T13:24:12+01:00 TLDR: This article highlights the Yarix Red Team’s daily challenges and internal work done to improve the quality of our outcomes. We will explore the topic by taking the Mobile Security field as a case: we will start with the common reporting problems every red team faces day after day, as well as those arising from the gaps in the...

Threat Actors leverage Chinese SHOPOEM Platforms to spread infamous scam campaign

Ylabs2024-08-01T11:48:13+02:00

Introduction

As Yarix Cyber Threat Intelligence (YCTI) team, we keep a close eye on and track phishing and scam campaigns on a daily basis. Protecting the reputation and image of client companies is one of the main goals of YCTI’s Brand Abuse team. This includes determining whether and how their officially registered trademarks are being used to spread fraudulent campaigns that...