Click Here 164. The Hunt for FIN7: Hot on the trail of a notorious cyber gang
Sep 10, 2024
Zach Edwards, a dedicated threat researcher specializing in cybersecurity, dives into the intricate world of the Fin7 cyber gang. He outlines their strategic operations and impressive organizational structure that have generated over a billion dollars in illicit revenue. Discover why tracking this elusive Russian-speaking group has proven so challenging. Zach also discusses their deceptive phishing tactics and how they continue to innovate, even after past arrests, raising concerns about traditional cybersecurity measures.
AI Snips
Chapters
Transcript
Episode notes
Fin7's Early Phishing Methods
- Fin7 started with simple phishing emails targeting American restaurant chains to steal credit card data.
- They sent emails with malicious attachments followed by phone calls to make the attack seem legitimate.
Arrests Don't End Cyber Gangs
- Arresting a few leaders of cybercriminal groups doesn't eliminate them entirely.
- Hundreds of other members often remain free, allowing the organization to continue operations.
AV Neutralizer Sneaks Past Defenses
- Fin7 created malware called AV Neutralizer that disables endpoint detection software temporarily.
- This lets hackers explore networks undetected, making breaches much easier.