A new hacking tool called GEOBOX has appeared on the darknet and is being sold through Telegram and underground forums for $ 700. It allows cybercriminals to hijack Raspberry Pi devices to fake location and bypass detection systems.
GEOBOX is able to turn the Raspberry Pi 4 Model B into a powerful tool for cyber fraud, allowing you to manipulate GPS, simulate network connections and Wi-Fi, as well as bypass anti-fraud filters.
According to a recent report by the US cybersecurity company Resecurity, cybercriminals target IoT devices to perform illegal actions, using OPSEC techniques and flexible settings for anonymity.
GEOBOX was discovered during the investigation of theft from the online banking system of a client of a large financial company, the name of which was not disclosed. The investigation drew the attention of researchers to the capabilities of the malware.
GEOBOX's arrival follows another dark web tool, TMChecker, which helped ransomware gangs carry out precision cyber attacks on the e-commerce and aviation industries.
GEOBOX is used as a proxy device in various remote locations to increase the anonymity of users, complicating the investigation and tracking process.
The malware has a wide range of features, including IP spoofing via WebRTC, geolocation manipulation via GPS spoofing, and the ability to hide the Wi-Fi MAC address. The tool supports various types of Internet connections and VPN protocols, and also allows you to create VPN tunnels inside other VPN tunnels.
GEOBOX is offered for a one-time payment of $ 700 or a monthly subscription for $ 80. Payment is made in cryptocurrency.
In addition to fraud and anonymization, GEOBOX can be used to coordinate cyber attacks, circumvent government censorship, distribute malware, password-matching campaigns, circumvent geographical restrictions, and test network security.
The rapid spread of a malicious tool requires law enforcement agencies and cybersecurity specialists to take active actions to monitor digital risks and develop protection strategies. This is the only way to effectively counter such threats.
• Source: https://www.resecurity.com/blog/art...-for-fraud-and-anonymization-geobox-discovery
GEOBOX is able to turn the Raspberry Pi 4 Model B into a powerful tool for cyber fraud, allowing you to manipulate GPS, simulate network connections and Wi-Fi, as well as bypass anti-fraud filters.
According to a recent report by the US cybersecurity company Resecurity, cybercriminals target IoT devices to perform illegal actions, using OPSEC techniques and flexible settings for anonymity.
GEOBOX was discovered during the investigation of theft from the online banking system of a client of a large financial company, the name of which was not disclosed. The investigation drew the attention of researchers to the capabilities of the malware.
GEOBOX's arrival follows another dark web tool, TMChecker, which helped ransomware gangs carry out precision cyber attacks on the e-commerce and aviation industries.
GEOBOX is used as a proxy device in various remote locations to increase the anonymity of users, complicating the investigation and tracking process.
The malware has a wide range of features, including IP spoofing via WebRTC, geolocation manipulation via GPS spoofing, and the ability to hide the Wi-Fi MAC address. The tool supports various types of Internet connections and VPN protocols, and also allows you to create VPN tunnels inside other VPN tunnels.
GEOBOX is offered for a one-time payment of $ 700 or a monthly subscription for $ 80. Payment is made in cryptocurrency.
In addition to fraud and anonymization, GEOBOX can be used to coordinate cyber attacks, circumvent government censorship, distribute malware, password-matching campaigns, circumvent geographical restrictions, and test network security.
The rapid spread of a malicious tool requires law enforcement agencies and cybersecurity specialists to take active actions to monitor digital risks and develop protection strategies. This is the only way to effectively counter such threats.
• Source: https://www.resecurity.com/blog/art...-for-fraud-and-anonymization-geobox-discovery
