The COM, originally a trading niche for social media accounts, has transformed into an organized criminal syndicate affecting corporations and governments globally. With its rise parallel to the cryptocurrency boom, criminal methods shifted toward large-scale digital wallet theft.
The operational structure of The COM mimics legitimate business models with distinct roles like social engineering, credential theft, and data exfiltration. This specialization fosters scaling of operations and mitigates risks. Groups such as Lapsus$ have showcased this evolution, utilizing manipulation through social engineering to breach major companies.
Social engineering has emerged as a primary tactic, with attackers impersonating support staff to extract sensitive information. The attack technique emphasizes human targets rather than technical vulnerabilities, making robust human-focused security measures essential for enterprises looking to enhance their defense strategies against such sophisticated threats.
👉 Pročitaj original: Cyber Security News
