Caught in the Net: Using Infostealer Logs to Unmask CSAM Consumers | allinfosecnews.com

July 2, 2024, 3:06 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Summary

In this proof-of-concept report, Recorded Future's Identity Intelligence analyzed infostealer malware data to identify consumers of child sexual abuse material (CSAM). Approximately 3,300 unique users were found with accounts on known CSAM sources. A notable 4.2% had credentials for multiple sources, suggesting a higher likelihood of criminal behavior. The study reveals how infostealer logs can aid investigators in tracking CSAM activities on the dark web. Data was escalated to law enforcement for further action.

Caught in the …

abuse accounts behavior caught child child sexual abuse child sexual abuse material concept consumers credentials criminal csam data found future higher identify identity infostealer infostealer malware intelligence logs malware malware analysis material proof proof-of-concept recorded future report using

More from malware.news / Malware Analysis, News and Indicators - Latest topics

In corso campagne di phishing italiane a tema FedEx an hour ago | malware.news

article cert delivery fedex +3

CVE-2024-6387 – Shields Up Against RegreSSHion 3 hours ago | malware.news

back code configuration critical +21

5 +1 MEPs to Watch as the New European Parliament Settles in 4 hours ago | malware.news

conservatives elections european parliament far +9

Threat Intelligence Snapshot: Week 27, 2024 4 hours ago | malware.news

access amp find intelligence +14

Defending Against OS Credential Dumping: Threat Landscape, Strategies, and Best Practices 5 hours ago | malware.news

adversaries best practices compromised credential +23

Authy phone numbers accessed by cybercriminals, warns Twilio 6 hours ago | malware.news

api app application application programming interface +19

Dark Web Profile: Brain Cipher 6 hours ago | malware.news

attack attention brain center +24

Taking action against antisemitism – close to 2 000 pieces of content flagged for removal 6 hours ago | malware.news

action coordinated countries enforcement +17

Critical HTTP File Server Vulnerability (CVE-2024-23692) Actively Exploited to Deploy Cryptomining Malware, RATs, Stealers 8 hours ago | malware.news

access actively exploited backdoors critical +26

Senior Software Java Developer

@ Swiss Re | Madrid, M, ES

View on infosec-jobs.com

Product Owner (Hybrid) - 19646

@ HII | Fort Belvoir, VA, Virginia, United States

View on infosec-jobs.com

Sr. Operations Research Analyst

@ HII | Albuquerque, NM, New Mexico, United States

View on infosec-jobs.com

Lead SME Platform Architect

@ General Dynamics Information Technology | USA VA Falls Church - 3150 Fairview Park Dr (VAS095)

View on infosec-jobs.com

DevOps Engineer (Hybrid) - 19526

@ HII | San Antonio, TX, Texas, United States

View on infosec-jobs.com

Cloud Platform Engineer (Hybrid) - 19535

@ HII | Greer, SC, South Carolina, United States

View on infosec-jobs.com