The Grugq has written an excellent essay on how the Russian cybercriminal gang FIN7 operates. An excerpt:
The key of FIN7’s success is their operational artwork of cyber crime. They managed their sources and operations successfully, permitting them to efficiently assault and exploit tons of of sufferer organizations. FIN7 was not essentially the most elite hacker group, however they developed quite a lot of fascinating improvements. Wanting on the course of triangle (individuals, course of, expertise), their expertise wasn’t refined, however their individuals administration and enterprise processes had been.
Their enterprise… is crime! And each enterprise wants enterprise objectives, so I wrote a mock FIN7 mission assertion:
Our mission is to proactively leverage current long-term, high-impact progress methods in order that we might ship the type of outcomes on the underside line that our buyers anticipate and deserve.
How does FIN7 actualize this imaginative and prescient? That is CrimeOps:
- Repeatable enterprise course of
- CrimeBosses handle staff, initiatives, knowledge and cash.
- CrimeBosses don’t handle technical innovation. They use incremental enchancment to TTP to stay efficient, however no extra
- Frontline staff don’t have to innovate (as a result of the method is repeatable)