Drops for Stuff: An Analysis of Reshipping Mule Scams

Monday, January 25, 2016 - 11:00am11:30am

Giovanni Vigna, Professor, University of California, Santa Barbara, and CTO, Lastline, Inc.


Credit card fraud has seen rampant increase in the past years, as customers use credit cards and similar financial instruments frequently. Both online and brick-and-mortar outfits repeatedly fall victim to cybercriminals who siphon off credit card information in bulk. Despite the many and creative ways that attackers use to steal and trade credit card information, the stolen information can rarely be used to withdraw money directly, due to protection mechanisms such as PINs and cash advance limits. Therefore, cybercriminals devised more advanced monetization schemes to work around current restrictions.

One monetization scheme that has been steadily gaining traction is represented by reshipping scams. In such scams, cybercriminals purchase high-value or highly demanded products from online merchants using stolen payment instruments, and then ship the items to a credulous U.S. citizen. This person, who has been recruited by the scammer under the guise of "work-from-home" opportunities, then forwards the received products to the cybercriminals, most of whom are located overseas. Once the goods reach the cybercriminals, they are then resold on the black market for an illicit profit. Due to the intricacies of this kind of scam, it is exceedingly difficult to trace, stop, and return shipments, which is why reshipping scams have become a common means for miscreants to turn stolen credit cards into cash.

Giovanni Vigna, Professor, University of California, Santa Barbara, and CTO, Lastline, Inc.

Giovanni Vigna is a Professor in the Department of Computer Science at the University of California, Santa Barbara. He is also the CTO at Lastline, Inc., and the head of the hacking group Shellphish. His research interests include malware analysis, web security, vulnerability assessment, and mobile phone security. He is known for organizing and running an inter-university Capture the Flag hacking contest, called iCTF, that every year involves dozens of institutions around the world.

Open Access Media

USENIX is committed to Open Access to the research presented at our events. Papers and proceedings are freely available to everyone once the event begins. Any video, audio, and/or slides that are posted after the event are also free and open to everyone. Support USENIX and our commitment to Open Access.

@conference {206253,
author = {Giovanni Vigna},
title = {Drops for Stuff: An Analysis of Reshipping Mule Scams},
year = {2016},
address = {San Francisco, CA},
publisher = {USENIX Association},
month = jan

Presentation Video