• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 26th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Cyber Crime
Scams and Fraud

Online stores under attack; a new fraudster bot spotted in the wild

March 25th, 2017 Carolina Malware, Scams and Fraud, Security 0 comments
Online stores under attack; a new fraudster bot spotted in the wild
Share on FacebookShare on Twitter

Hackers have designed a new bot named Giftghostbot which is being used to defraud thousands of gift card owners. As per reports, these attacks were first spotted by the cyber security firm, Distil Networks on February 26th, and since then almost 1000 websites have been the victim of this hack.

The criminals are using this bot to automatically generate possible account numbers of consumers and requesting the account balance of each card number. Whenever a card balance is received rather than an error or zero, this means that the attack was successful and the credentials could be then sold on the Darkweb or use to make a purchase.

More: Sorry Folks Range Rover Sport 2016 Give Away is a Facebook Scam

This is what Distill Networks researcher Anna Westelius has to say about the Giftghostbot:

“First, it is lying about its identity by rotating user-agent strings. Second, it is massively distributed across various hosting providers and data centers all over the world. Third, it is technically sophisticated when it executes JavaScript, mimicking a normal browser. Finally, it is persistent in that if it is blocked using one technique it adapts and returns using a different attack technique.”

According to Distill networks, the bot is capable of sending over 1.7 million requests per hour and the amount of damage that has been caused by this bot is still unknown.

Although, the bot is primarily designed to steal the gift card information of the consumers, in some cases it could affect the websites as well. In some isolated cases, the millions of requests could lead to slowdowns or potential downtime of the site.

Rami Essaid, CEO of Distill networks said that: “Like most sophisticated bot attacks, GiftGhostBot operators are moving quickly to evade detection, and any retailer that offers gift cards could be under attack at this very moment. While it is important to understand that retailers are not exposing consumers’ personal information, consumers should remain vigilant. Chef gift card balances, contact retailers and ask for more information. To prevent resources from being drained, individuals and companies must work together to prevent further damage.”

[fullsquaread][/fullsquaread]

More: Facebook to shut down fake clothing store pages scamming users

It is worth mentioning here that the retailers are not responsible for exposing the personal information and the bot is specially designed to take advantage of balance checking feature of the sites.


DDoS attacks are increasing, calculate the cost and probability of a DDoS attack on your business with this DDoS Downtime Cost Calculator.

  • Tags
  • Bot
  • Cyber Crime
  • internet
  • Malware
  • Marketing
  • Privacy
  • Scam
  • security
Facebook Twitter LinkedIn Pinterest
Previous article WikiLeaks: CIA hacking tools infiltrate iPhones, MacBooks - Apple: It's an old story
Next article 25 vBulletin Forums Hacked; Millions of Accounts Being Sold on Dark Web
Carolina

Carolina

Carolina works for HackRead as a technical writer. She is a Brazilian traveller who has been to almost every country around the world. She has a keen interest in technology, gadgets and social media.

Related Posts
SonicWall hacked after 0-day flaws exploited by hackers

SonicWall hacked after 0-day flaws exploited by hackers

Gamarue malware found in UK Govt-funded laptops for homeschoolers

Gamarue malware found in UK Govt-funded laptops for homeschoolers

Shazam Vulnerability exposed location of Android, iOS users

Shazam Vulnerability exposed location of Android, iOS users

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
Man jailed after attempting to buy 3-year-old girl on dark web
Cyber Crime

Man jailed after attempting to buy 3-year-old girl on dark web

61
SonicWall hacked after 0-day flaws exploited by hackers
Hacking News

SonicWall hacked after 0-day flaws exploited by hackers

114
Massive privacy risk as hacker sold 2 million MyFreeCams user records
Cyber Crime

Massive privacy risk as hacker sold 2 million MyFreeCams user records

152

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us