Resecurity specialists have discovered STYX Marketplace, a new darknet e-commerce platform for cybercriminals specializing in financial fraud and money laundering.
The STYX marketplace was launched in early 2023 and is designed to facilitate financial crime by providing a wide range of services to cybercriminals, including:
- stolen financial data;
- credit card information;
- fake documents;
- money laundering services;
- network reconnaissance of targets;
- SIM cards;
- DDOS services;
- bypass authentication via 2FA/SMS.
Once a new user registers and accesses the STYX marketplace, they are provided with a wide range of services to browse. STYX also offers a "Trusted Sellers" section, which is supposedly reviewed by STYX administrators before being posted. Some service descriptions are limited - the marketplace links members via Telegram and various bots as a security measure.
The Resecurity team found that within a few months of operation, STYX had already gained the trust of a significant number of cybercriminals. Overall, the emergence of STYX highlights the alarming rise in financial fraud-focused services and the need for enhanced security measures for financial institutions.
The Resecurity investigation revealed that one of the main trends for cybercriminals to withdraw funds is the use of virtual credit cards (VCC) and NFC vending machines, which are fraudulently opened to facilitate illegal activities. At the STYX site, experts found 100 mule accounts.
The opening of STYX is significant as it highlights the importance of cybersecurity to the financial sector.