| Category | Details |
|---|---|
| Threat Actors | Ardit Kutleshi (26), Jetmir Kutleshi (28), and Shpend Sokoli, operators of the Rydox cybercriminal marketplace. |
| Campaign Overview | Rydox facilitated the sale of stolen personal information, device access, credit card numbers, login credentials, and tools for cybercrime and fraud. |
| Target Regions (Victims) | Predominantly U.S. residents; the platform had approximately 18,000 users worldwide. |
| Methodology | ➡ Selling stolen data and fraud tools on a darknet marketplace ➡ Users deposited funds before being approved to make purchases on the platform. |
| Product Targeted | Social Security numbers, full identity kits (“fullz”), credit card details, login credentials, and manuals for creating scam pages. |
| Malware Reference | Not explicitly mentioned; focus was on stolen data and fraud-enabling tools. |
| Tools Used | Rydox platform infrastructure; fraud tutorials; “fullz” data packages. |
| Vulnerabilities Exploited | ➡ Lack of individual cybersecurity measures ➡ Abuse of stolen credentials to commit fraud and identity theft. |
| TTPs | ➡ Establishing and operating a cybercriminal marketplace ➡ Enabling large-scale identity theft and fraud through stolen data and tutorials. |
| Attribution | Direct attribution to three Kosovo nationals; platform infrastructure linked to servers in Malaysia. |
| Recommendations | ➡ Strengthen personal data security measures ➡ Monitor financial transactions for unusual activity ➡ Crack down on cybercriminal marketplaces globally. |
| Source | The Record |
Read full article: https://therecord.media/three-arrested-in-kosovo-rydox-marketplace-awaiting-extradition
The above summary has been generated by an AI language model
Leave a Reply