Sign Up
..... Connect Australia with the world.
Categories

Posted: 2023-04-07 00:34:12

Because those fingerprints often include credentials, cookies, internet protocol addresses and other browser or operating system details, they could be used by criminals to bypass anti-fraud solutions such as multifactor authentication or device fingerprinting, she said.

The site had been active since 2018.

This is how the Genesis Market website looked after police working with Operation Cookie Monster shut it down.

This is how the Genesis Market website looked after police working with Operation Cookie Monster shut it down.

Lee said the site had the potential to cause $46 million in harm to the Australian community through the sale of stolen Australian credentials and access to compromised Australian devices.

The Australian arm of the investigation, codenamed Operation Zinger, began in 2020 when investigators from the AFP’s Cyber Command received information regarding potential users of the site from the FBI.

The total number of Australian victims is still being calculated but investigators have identified 36,000 compromised Australian devices available for sale on the site and more than 600 reports to ReportCyber that match stolen information available on it.

The NCA said Genesis sold credentials from as little as $US0.70 to hundreds of dollars depending on the stolen data available.

Other countries involved in the investigation included Denmark, Estonia, Finland, France, Germany, Iceland, Italy, New Zealand, Poland, Romania, Spain, Sweden and Switzerland.

“The Genesis Market lowered the barrier to entry for ransomware groups and allowed many cybercriminals to swiftly scale their operations and carry out targeted attacks for immediate financial benefit,” said John Fokker, head of threat intelligence for US cybersecurity firm Trellix. “Without even factoring in the arrests of Genesis Market members, simply removing this immense cybercriminal marketplace from the web will significantly slow down cybercriminal activity.”

NSW Police Force’s Cybercrime Squad Commander, Acting Superintendent Jason Smith urged people to check their level of data security.

Loading

“We would urge all people to ensure your cybersecurity is up to scratch – watch out for any suspicious activity on your accounts, turn on any multifactor authentication. If you believe you have been a victim of cybercrime, please report it via www.cyber.gov.au.”

The AFP’s Lee warned police action would continue around the country as AFP and State and Territory investigators had identified additional alleged offenders.

“Don’t think that because we haven’t knocked on your door yet, we won’t be at all. If you have used this website to purchase stolen data to commit cybercrime or fraud offences then we will find you and we will be paying you a visit.”

People can check if their personal details were compromised and appeared on Genesis via the Dutch Police portal www.politie.nl/checkyourhack.

with Reuters

View More
  • 0 Comment(s)
Captcha Challenge
Reload Image
Type in the verification code above