Cendyne on Nostr: Guhhh I clean up 560k botnet credit cards only to determine another threat actor was ...
Guhhh
I clean up 560k botnet credit cards only to determine another threat actor was present and produced another 55k of them. This time on existing users with credential stuffing.
Besides invalidating the payment methods, I am still thinking of what to do.
This attack happened while I was on vacation and no one took initiative on preventing the attack while I was gone. There were signals and discussions in slack... Ultimately I had to step in during my vacation to slap down the attack. And that's after the CEO had a tizzy over a big name bank cutting off the merchant account.
I clean up 560k botnet credit cards only to determine another threat actor was present and produced another 55k of them. This time on existing users with credential stuffing.
Besides invalidating the payment methods, I am still thinking of what to do.
This attack happened while I was on vacation and no one took initiative on preventing the attack while I was gone. There were signals and discussions in slack... Ultimately I had to step in during my vacation to slap down the attack. And that's after the CEO had a tizzy over a big name bank cutting off the merchant account.