Hackers using File Lockers to Exfiltrate Stolen Credit Card numbers

Piracy isn’t the only illegal activity taking place on file lockers. Recent research has demonstrated that hackers are using file lockers and streaming sites to exfiltrate stolen credit card numbers and other stolen data from their targets.

In a recent article published at Dark Reading, the methods used by hackers to exfiltrate data via video streaming sites were examined in detail. However this activity also takes place on file lockers.

Hackers who have stolen credit card, financial or other data need a way to exfiltrate that data without revealing their final destination for the data. So in a clever manoeuvre the hackers will embed stolen data into regular movie files and then upload them onto file locker services. Then once the data is in place, the hackers will then exfiltrate that data just as a normal file locker user would download files. Once the data has been retrieved the original files are deleted from the file locker.

[Read more...]

Mega: Hypocrisy, Piracy and Porn

In a recently released report, focussing on the partnership between credit card companies and file lockers, Mega was named as one of the worst piracy sites in the world. In response, and showing the sheer arrogance of Kim Dotcom, Mega have decided to sue Netnames for defamation.

MEGA

We have been studying Mega since it first opened and we noticed piracy taking place on the site from the very beginning. Now 18 months on, the amount of piracy taking place on Mega is staggering, despite Mega not appearing to have pay per download program for uploaders.

Pirates monetise piracy taking place on Mega using ad networks that display an ad before redirecting users to pirated content. Such ad networks include adf.ly which displays an interstatial ad that cannot be bypassed before redirecting the user to the content being linked to.

Mega is a haven for piracy. Out of the top twenty sites (by number of links to Mega) most of them link to pirated content hosted on Mega.

Mega referring sites

Piracy on Mega

Frozen – Movie Piracy

MEGA

[Read more...]

Rapidgator: Uncontrolled Piracy

Rapidgator is one of the worst piracy sites on the planet. It’s owners directly profit from the theft of IP and encourage such theft through affiliations with piracy forums and the payment of uploaders. Rapidgator is part of a criminal conspiracy to distribute copyright infringing and illegal content and it’s owners deal in the proceeds of this crime every day.

Rapidgator net Fast safe and secure file hosting

Like almost every illegal file locker, Rapidgator pays uploaders based on the number of downloads their files receive or rewards them with a commission when someone seeking out pirate content joins the site. Below is a screenshot of their rewards page.

Rapidgator net Fast safe and secure file hosting

Rapidagtor are able to process payments for memberships to the site using every major credit card. Mastercard, Visa, and Amercian Express.

Rapidgator net Fast safe and secure file hosting

Rapidgator is a criminal operation. It’s sole purpose is to infringe upon the copyright of large and small rights holders. It has formed alliances with major piracy forums and pays uploaders rewards based on the performance of their files.

[Read more...]

FileDais.com: Linked to ChayFile – Loses Payment Processing

FileDais.com, which is owned by the same person as ChayFile.com, has lost payment processing. As with ChayFile, the operator of this site thought he could get away with using Paypal, he couldn’t.

FileDais  Best File Hosting

FileDais  Best File Hosting

Error  Your purchase couldn t be completed  PayPal

As can be seen above the payment address is the same as that used on ChayFile.com. This file locker has run out of luck in more ways than one – they recently had a server suspended and we are working to shut off all of their hosting services.

ChayFile.com: Loses Payment Processing

A new up and coming file locker ChayFile has been deprived of payment processing. It is common knowledge that Paypal will not process for illegal file lockers, yet ChayFile decided to try their luck – last week their luck ran out.

ChayFile  Cloud File Storage

ChayFile  Cloud File Storage

Error  Your purchase couldn t be completed  PayPal

We will continue to target file lockers big and small to mitigate the huge amount of copyright infringement and distribution of illegal content that these sites engage in.

Keep2Share and FileBoom. More Illegal Pornography.

We have looked closely at Keep2Share and FileBoom, both file lockers run by the same persons. We have also examined the large amount of television and movie piracy on Keep2Share as well as the illegal pornography being shared on Keep2Share. We have even highlighted the extensive software piracy on Keep2Share

Keep2Share cc

FileBoom me

Keep2Share lost their credit card merchant account due to the content that they hosted, however the owners of FileBoom and Keep2Share have learnt nothing by the experience. In the past 24 hours we have completely re-indexed both sites and have come across some disturbing content.

Membership to FileBoom can be purchased directly on the site with Visa or Mastercard. Membership of Keep2Share can be purchased through resellers using both Visa and Mastercard.

Illegal Pornography on FileBoom

FileBoom me  View File

FileBoom me  View File

[Read more...]

Keep2Share, FileBoom & MoneyPlatform Network Details

This post will look closely at the network of sites that engage in extensive piracy and the sharing of illegal content. This network is comprised of Keep2Share.cc (also known as k2s.cc), FileBoom.me (also known as fboom.me) and MoneyPlatform.biz.

Keep2Share and FileBoom are file lockers. Users are paid based on the number of downloads their uploads receive. This is a huge incentive to upload copyright infringing and illegal content. The affiliate program for both sites is run through a website called MoneyPlatform.biz

Keep2Share cc

FileBoom me

Moneyplatform biz

The Network

These three sites are easily tied together using analysis of the network infrastructure they use. We have been able to identify network relationships between the sites and their various hosts and servers. [Read more...]