In a successful operation known as Cookie Monster, the FBI and other law enforcement agencies in the US and across the globe have taken down Genesis Market, the largest dark web market for stolen digital identities. Cybercriminals have been using the market to buy and sell stolen credentials, browser fingerprints, and browser cookies for fraudulent activities, including account takeovers.
Genesis Market has been operating since 2018, and it quickly became a go-to place for cybercriminals looking to bypass Multi-Factor Authentication (MFA) and perpetrate account takeover. The market offers its users a specialized browser and plugin called Genesium, which makes the account takeover process easy for them. Genesis Market also required a referral from a current member to register, making it an invitation-only place.
During the investigation, law enforcement agencies discovered more than 450K listed bots (or infected machines), ranging from streaming services, webshops, and bank details to corporate logins. Prices of bots varied per country and the number of available fingerprints.
The takedown of Genesis Market is a significant victory in the fight against cybercrime. It highlights the importance of securing sensitive data and adopting secure measures like MFA to ensure the privacy and security of digital identities. The use of stolen browser fingerprints and cookies for account takeover is a severe threat that needs to be addressed, and law enforcement agencies are working hard to bring these cybercriminals to justice.
 |
| Figure:1 Genesis will announce new web domains. |
Genesis Market has also issued a statement that although their public site has been blocked, their Tor domain site page is still accessible. They are also planning to create a new domain so that their users can continue to access the platform and services they offer.
If you are concerned about the security of your digital identity, it's essential to take proactive measures to protect yourself. You should use strong and unique passwords for all your accounts and enable MFA wherever possible. It's also crucial to keep your devices and software up-to-date, as cybercriminals often exploit known vulnerabilities in outdated systems. By taking these steps, you can reduce the risk of becoming a victim of cybercrime and help make the digital world a safer place for everyone.
0 Comments