It’s a scary time for credit card holders. Online fraud is a hugely successful business for many criminals operating on the dark web and across the globe.
These online fraudsters operate by gaining access to illegally obtained credit card details and use sophisticated security blocks and spoofs to cover their tracks.
As banks are generally bound to cover credit card fraud within their contracts it means that the cost is passed on to the customer via higher interest rates and credit card fees.
FraudFox is one method that helps perpetrators of credit card fraud avoid detection, and the previous weeks the program, retailing at $99 on the dark web was reported to have been cracked, which would allow a free-for-all for card scammers everywhere.
What Is FraudFox?
Fraudfox is a Virtual Machine based on VMWare.
VMWare is software that mimics another computer’s setup – the VM stands for Virtual Machine.
For instance you can use VMWare on a Mac laptop and run it up so that you have a Windows desktop running inside of your Mac environment – giving you access to use programs and features that only Windows employs.
FraudFox has the ability to spoof not only the operating system requirements of a machine but also the browser fingerprint that you are using also.
What’s a Browser Fingerprint?
A browser fingerprint is the data that makes a user’s browser experience unique to them.
It’s not nearly as unique as an actual fingerprint, but it can narrow down users to a specific subset.
For instance your browser fingerprint may be for your user string that you’re running Mozilla 5.0 with Windows NT 6.1, using Gecko/20100101 and Firefox 38.0.
There are many more variables that also make up your browser fingerprint.
What is FraudFox Used For?
Here, the same says it all.
FraudFox is used mainly for fraudulent credit card transactions online, where the aim is to avoid detection by using a different browser fingerprint than your own.
How Is FraudFox Available?
As with most nefarious products, FraudFox is available on the dark web, via dark web markets.
On Alphabay dark web site, FraudFox sits alongside other software like Netflix accounts, keyloggers and its competitor AntiDetect.
What is a Crack?
A crack is when software has been illegally tampered with to disable specific features of the software and/or get around copying the software.
Essentially it generally means that you can get an illegal copy of the software for free – sometimes via a patch or some keygen software.
Cracked software has been around for as long as software has been around, with hackers offering up applications such as Photoshop and Halo to those in the know.
Cracks have usually been distributed for free, usually to users who know where to find them, with the hacker’s reputation going up amongst the community being the main aim of the exercise, along with proving how easy or difficult the software was to crack.
Has FraudFox Been Cracked?
On Thursday October 8th, a new user on Reddit by the name of Guidonator popped their head up in the /r/deepweb sub-reddit claiming to have cracked the software that is usually available for a license of $99/month.
Guidonator put up a link to a zip file with an exe file in it and said they were giving it away for free to build a customer base.
Despite our thirst for knowledge of whether the file is legitimate, we decided not to click on it, due mainly to the fact that the majority of these executables simply install trojans and malware onto your computer.
The same user also was busted by another forum commenter under /r/AlphaBay for promoting links to “Free carding guides” – that’s guides to credit card fraud for you and I – that did indeed contain a trojan, picked up and reported on by the commenters’ Malwarebytes Anti-Malware software.
We deeply suspect that if FraudFox has indeed been cracked, that the version is not simply lurking on a Reddit forum in plain sight.
It would be far more likely that the cracked version would be circulating on the dark web, possibly through the darknet markets. At present, the only version available appears to be the original, which is still up on AlphaBay dark web site.
At present, the only version available appears to be the original, which is still up on AlphaBay dark web site.
Latest posts by Richard (see all)
- Wide Range of Job Ads Available on the Dark Web - November 5, 2018
- Continuous Exploit of RDP Pushes FBI to Issue Warning to Potential Targets - October 29, 2018
- Ross Ulbricht’s Fifth Year in Jail - October 10, 2018