Menu
русскийenglish
Crime without punishment: in-depth analysis of JS-sniffersJS-sniffers pose a growing threat by attacking online stores and stealing payment data and credentials of their users. Group-IB experts have researched this type of malware and have discovered at least 38 families of JS-sniffers, whereas only 12 were known previously.Request Try Threat Intelligence

Key facts

Group-IB experts have discovered 38 different JS-sniffer families, whereas only 12 were known previously

The total daily number of visitors of all the infected sites exceeds 1.5 million people

By selling compromised payment data cybercriminals can earn from $1 to $5 per card

JS-sniffers can be bought or rented on underground forums, with their price ranging from $250 to $5,000

This class of malware seemed to be a rather primitive threat to large players like banks and payment systems, since JS-sniffers were believed to target small online stores. Now, however, it is time to question that belief. When a site is infected, everyone is involved in the chain of victims — end users, payment systems, banks that issued compromised cards, and companies that sell their goods and services online.

The urgency of the problem is linked to its potentially huge audience (today, almost all of us use online stores). Group-IB Threat Intelligence specialists continuously monitor the appearance of new JS-sniffers and appeal to the cybersecurity community to take a closer look at this growing threat.

 

 

 

Viktor Okorokov

Threat Intelligence analyst

Group-IB research on targeted attack groups

October 2018

Hi-Tech Crime Trends 2018

Introducing the research on cyber-security trends and predictions for the next year. Plan your cyber security strategy effectively.
 
Request Learn more
September 2018

Silence: Moving into the darkside

A mobile, small, and young cybergang group has been progressing rapidly. While successful attacks were detected in Russian banks, Group-IB experts have discovered the group’s activity in 25+ countries worldwide.
Request Learn more
August 2018

2018 Cryptocurrency Exchanges

Estimation of the number of login and passwords leaks of cryptoсurrency exchanges users and analysis their nature. Recommendations for ensuring security of users and exchanges.
Request Learn more
May 2018

Cobalt: their evolution and joint operations

Learn about Cobalt’s development and modification of tools and tactics which were used to steal approximately 1 billion dollars from over 100 banks in 40 different countries.
Request Learn more
December 2017

MoneyTaker

This hacker group is noticeable for 1.5 years of silent operations and multiple attacks. They still pose a threat: learn about MoneyTaker techniques and indicators of compromise now.
 
Request Learn more
October 2017

Hi-Tech Crime Trends 2017

Introducing the research on cyber-security trends and predictions for the next year. Plan your cyber security strategy effectively.
 
Request Learn more
May 2017

Lazarus Arisen: Architecture, Techniques and Attribution

In-depth research, containing recommendations on how to track their involvement in recent attacks.
 
Request Learn more
October 2016

Hi-Tech Crime Trends 2016

Learn about the evolution of cyber crime in 2016 and find out what predictions for 2017 came true. Spoiler: most of them did.
 
Request Learn more
December 2017

Cobalt: logical attacks on ATMs

The Cobalt’s group members did not touch the ATMs, just took the money. Discover how the “touchless jackpotting” worked.
 
Request Learn more
March 2016

Buhtrap: the evolution of targeted attacks against financial institutions

This research gives the details about the methods of the hacker group, which carried out 13 successful attacks against banking institutions.
 
Request Learn more
February 2015

Analysis of attacks against trading and bank card system

Group-IB annual report on speculative fluctuations of exchange rate and other incidents in 2015 caused by the Trojan program Corkow (Metel).
 
Request Learn more
December 2014

Anunak: APT against financial institutions

This research includes the findings of Group-IB and Fox‑IT on Anunak (Carbanak) group, which focused its activity on banks and electronic payment systems.
Learn more
October 2018

Hi-Tech Crime Trends 2018

Introducing the research on cyber-security trends and predictions for the next year. Plan your cyber security strategy effectively.
 
Request Learn more
September 2018

Silence: Moving into the darkside

A mobile, small, and young cybergang group has been progressing rapidly. While successful attacks were detected in Russian banks, Group-IB experts have discovered the group’s activity in 25+ countries worldwide.
Request Learn more
August 2018

2018 Cryptocurrency Exchanges

Estimation of the number of login and passwords leaks of cryptoсurrency exchanges users and analysis their nature. Recommendations for ensuring security of users and exchanges.
Request Learn more
May 2018

Cobalt: their evolution and joint operations

Learn about Cobalt’s development and modification of tools and tactics which were used to steal approximately 1 billion dollars from over 100 banks in 40 different countries.
Request Learn more
December 2017

MoneyTaker

This hacker group is noticeable for 1.5 years of silent operations and multiple attacks. They still pose a threat: learn about MoneyTaker techniques and indicators of compromise now.
 
Request Learn more
October 2017

Hi-Tech Crime Trends 2017

Introducing the research on cyber-security trends and predictions for the next year. Plan your cyber security strategy effectively.
 
Request Learn more
May 2017

Lazarus Arisen: Architecture, Techniques and Attribution

In-depth research, containing recommendations on how to track their involvement in recent attacks.
 
Request Learn more
October 2016

Hi-Tech Crime Trends 2016

Learn about the evolution of cyber crime in 2016 and find out what predictions for 2017 came true. Spoiler: most of them did.
 
Request Learn more
December 2017

Cobalt: logical attacks on ATMs

The Cobalt’s group members did not touch the ATMs, just took the money. Discover how the “touchless jackpotting” worked.
 
Request Learn more
March 2016

Buhtrap: the evolution of targeted attacks against financial institutions

This research gives the details about the methods of the hacker group, which carried out 13 successful attacks against banking institutions.
 
Request Learn more
February 2015

Analysis of attacks against trading and bank card system

Group-IB annual report on speculative fluctuations of exchange rate and other incidents in 2015 caused by the Trojan program Corkow (Metel).
 
Request Learn more
December 2014

Anunak: APT against financial institutions

This research includes the findings of Group-IB and Fox‑IT on Anunak (Carbanak) group, which focused its activity on banks and electronic payment systems.
Learn more

Thank you for your interest in our research.

Please fill in the form below and we will send you the Group-IB report. Make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your interest in our research. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Thank you for your interest in our research.
Please fill in the form below and we will send you the Group-IB report. Please make sure to correctly fill in all fields, we will only provide materials on provision of a valid corporate email address.

Thank you for the inquiry!
We will contact you soon.

Advanced protection against cyber threats

Group-IB’s security ecosystem provides comprehensive protection for your IT infrastructure based on our unique cyber intelligence and deep analysis of attacks and incident response.

Threat
Intelligence

Аctionable, finished intelligence to track actors and prevent attacks before they happen

Threat Detection System

Intelligence-driven network protection even from the most advanced attacks

Secure Bank
 

Client-side fraud and attack prevention system for online banking, working across sessions, platforms and devices

Secure Portal
 

Protection from bots, fraud and data leakage for e‑commerce and web portals

Contact us to get more information about Group-IB Threat Intelligence or register for product demo

Thank you for the inquiry!
We will contact you soon
to scheldule you free trial.

Report an incident

24/7 Incident Response Assistance +7 495 984-33-64

Thank you for the inquiry! We will contact you soon.
Cookies

We use cookies on the website to make your browser experience more personal, convenient and secure. You may block or manage the use of cookies, however, in some cases they’re essential to make this site work properly. Learn more about cookies in Group-IB Privacy And Cookies Policy.

 
Find out more