Private Session

STORM-0539: The Silent Gift Card Heist | TLP:RED – Core Members Only

This session is TLP:RED 

" options="'Apple','Google','iCal','','Yahoo'" lightMode="bodyScheme">
April 10, 2024
2:15 pm - 2:45 pm
Capitol 3

Storm-0539 is an unclassified threat actor labeled by Microsoft that has targeted the retail, software, and gaming industries. This talk is an analysis of the Tactics, Techniques and Procedures (TTPs) and objectives the actor carries out on its target. We’ll also delve into their primary motivation, which appears to be retaining legitimate access to the target environment to perpetuate gift card fraud, a fascinating distinction between STORM-0539 and some other financially motivated threat actors. This objective reflects a broader initiative in the threat landscape where the lines between fraud and cyber threats are becoming increasingly blurred–a serious consideration that Target CTI folks, Ryan Miller and Leah Schwartzman spoke to at the CTI Summit last fall.

This session is TLP:RED 


Jake McAlpine

Threat Research Consultant, Best Buy

Shawn Hughes

Lead, Threat Hunter & Research Team, Best Buy