The ThreatMetrix Gaming and Gambling Cybercrime Report is based on actual cybercrime attacks in Q2 2018 that were detected by the ThreatMetrix Digital Identity Network (the Network) during real-time analysis and interdiction of fraudulent online payments, logins and new account applications.

The ThreatMetrix Cybercrime Report: Q2 2018 is based on actual cybercrime attacks from April – June 2018 that were detected by the ThreatMetrix Digital Identity Network (The Network) during real-time analysis and interdiction of fraudulent online payments, logins and new account applications.

The ThreatMetrix Cybercrime Report: Q1 2018 is based on actual cybercrime attacks from January – March 2018 that were detected by the ThreatMetrix Digital Identity Network (The Network) during real-time analysis and interdiction of fraudulent online payments, logins and new account applications.

The ThreatMetrix European Cybercrime Report: Q1 2018 is based on actual cybercrime attacks from January – March 2018 that were detected by the ThreatMetrix Digital Identity Network (The Network) during real-time analysis and interdiction of fraudulent online payments, logins and new account applications.

This report offers insight into the cybercrime events of 2017.

The ThreatMetrix Cybercrime Report: Q4 2017 is based on actual cybercrime attacks from October – December 2017 that were detected by the ThreatMetrix Digital Identity Network (The Network) during real-time analysis and interdiction of fraudulent online payments, logins and new account applications.

The ThreatMetrix Cybercrime Report: Q3 2017 is based on actual cybercrime attacks from July – September 2017 that were detected by the ThreatMetrix Digital Identity Network (The Network) during real-time analysis and interdiction of fraudulent online payments, logins and new account applications. • The Network provides visibility and insight into traffic patterns and emerging threats. The Network analyzes close to two billion transactions per month, over 51% of which originate from mobile devices. • These transactions are analyzed for legitimacy based on hundreds of attributes, including device identification, geolocation, previous history and behavioral analytics. • The Network and its real-time policy engine provide unique insight into users’ digital identities, even as they move between applications, devices, and networks. • ThreatMetrix customers benefit from a global view of risks, based on these attributes and rules that are custom-tuned specifically for their businesses. • Attacks discussed are from “high-risk” transactions scored by ThreatMetrix customers.

Cybercrime continues to grow, with organizations being attacked more than ever before. ThreatMetrix detected and stopped 144 million attacks this quarter and 300 million bot attacks. The complex, networked nature of cybercrime attacks can be seen in the following key trends analyzed this quarter: • The evolution of emerging economies in the cybercrime landscape as identity data trickles down to all regions of the globe following large-scale breaches • The regional variations in attack vector trends, with South America emerging as a hub for new account origination fraud • The emergence of highly organized criminal gangs targeting multiple organizations within the ThreatMetrix Network • The rise in mobile attack rates as attackers turn their attention towards the growing mobile economy

The ThreatMetrix Cybercrime Report: Q1 2017 is based on actual cybercrime attacks from January – March 2017 that were detected by the ThreatMetrix Digital Identity Network (The Network) during real-time analysis and interdiction of fraudulent online payments, logins and new account applications. The Network provides visibility and insight into traffic patterns and emerging threats. The Network analyzes close to two billion transactions per month, over 45% of which originate from mobile devices. These transactions are analyzed for legitimacy based on hundreds of attributes, including device identification, geolocation, previous history and behavioral analytics. The Network and its real-time policy engine provide unique insight into users’ digital identities, even as they move between applications, devices, and networks. ThreatMetrix customers benefit from a global view of risks, based on these attributes and rules that are custom-tuned specifically for their businesses. Attacks discussed are from “high-risk” transactions scored by ThreatMetrix customers.

This report offers these key insights: 49% of all transactions analyzed in gaming and gambling come from a mobile device, Identity spoofing remains the biggest threat to the industry, and Automated bot attacks can account for around half of daily gaming/gambling traffic during periods of peak attacks.

This report offers insight into the Asia-Pacific region and the cybercrimes that are growing and continuing to occur in the area.

The ThreatMetrix Cybercrime Report: Q4 2016 is based on actual cybercrime attacks from October – December 2016 that were detected by the ThreatMetrix Digital Identity Network (The Network) during real-time analysis and interdiction of fraudulent online payments, logins and new account applications.

This report from ThreatMetrix compiles their 2017 Cybercrime report in such a way that they offer unique insight into the travel and entertainment industry and how cybercrime is impacting that arena.

The ThreatMetrix Cybercrime Report: Q3 2016 is based on actual cybercrime attacks from July 2016 – September 2016 that were detected by the ThreatMetrix Digital Identity Network (The Network) during real time analysis and interdiction of fraudulent online payments, logins and new account applications.

Using intelligence from the ThreatMetrix Digital Identity Network, gaming and gambling companies can accurately differentiate between responsible users and problem gamblers / fraudsters in real time.

APAC continues to be an exciting region of huge growth, evolution and change; increasing its vulnerability to organized, global cyber attacks. This is particularly true given APAC has a particularly strong cross-border footprint, with a high proportion of digital transactions criss-crossing country boundaries. Cross-border transactions are considered riskier by most organizations, driven by the fact that they are far more likely to be automated bot attacks than domestic transactions, and attract higher instances of location spoofing, as fraudsters attempt to hide behind VPNs and proxies to mask their true location.

This is ThreatMetrix’s Report of events from the second quarter of 2016.

This report from ThreatMetrix compiles the data from their 2016 Cybercrime report to provide insight into the threats in the European sector.

The ThreatMetrix Cybercrime Report: Q1 2016 is based on actual cybercrime attacks from January 2016 – March 2016 that were detected by the ThreatMetrix Digital Identity Network (The Network) during real-time analysis and interdiction of fraudulent online payments, logins and new account applications.

This report offers insight into OilRig an Iranian-linked Advanced Persistent Threat. It discusses who they are and why you should care.

This paper takes a look at several bespoke backdoors deployed by OceanLotus Group, as well as evidence of the threat actor using obfuscated CobaltStrik Beacon payloads to perform C2.