Payment Detail Acquisition

ID:	TAC-04
Phase:	Resource Development

The adversary is trying to acquire financial infomation that can be used to make payments in another's name, for example bank account or credit card details. This information is most commonly acquired from keylogging, phishing and data dumps, and may contain either, or a mixture of, complete and partial payment detail sets.

Techniques

• Data Dumps
• Malware
• Person in the Middle
• Social Engineering

Related Kill Chains

• Carding Bot
• Fake Account Creation Bot
• Gift Card Cracking Bot
• Loyalty Points Bot