Infinity Black: Five Polish hackers were arrested as part of a Europol operation yesterday for their involvement in the Infinity Black hacker group. The group operated a website under the same name, where they would sell collections of compromised user credentials, including passwords. Along with these collections of compromised credentials, which came from other hackers’ breaches, the group also sold tools to carry out credential stuffing attacks with these collections. According to a statement made by Europol, the group would use the same collections and tools to search for other online accounts where the same credentials were used–specifically loyalty programs. The group sold access to these loyalty program accounts to other criminals who would then exchange the points, typically for expensive electronics. Losses caused by the group are currently estimated at 50,000 Euros (~54,000 USD), although they appear to have had access to nearly 610,000 Euros (~659,000 USD) in potential losses through exploiting the compromised loyalty programs. The members of the group who were caught by authorities were identified after they attempted to use the stolen data at shops in Switzerland. During the arrest of the five Polish hackers, databases containing over 170 million stolen user credentials were discovered by authorities.
By Akshay Rohatgi and Randy Pargman About this Student Research Project Binary Defense’s mission is