Cacco and Link Unveil Cashless Security Report for Early 2025 Revealing Cyber Threats

Cacco and Link Present the Cashless Security Report for Q1 2025

Cacco Co., Ltd. (headquartered in Minato, Tokyo, represented by President Hiroyuki Iwai) and Link Co., Ltd. (also based in Minato, Tokyo, led by President Motoharu Okada) have announced the release of the latest edition of the "Cashless Security Report for January to March 2025". This quarterly report provides critical statistics concerning credit card information leaks and trends of fraudulent activities in the e-commerce sector.

This latest report delves into growing concerns, specifically addressing the misuse of digital gifts within live streaming services and the rise of malware known as the "InfoStealer". These issues pose significant threats to the safety and security of online financial transactions.

Report Highlights

1. Misuse of Digital Gifts in Live Streaming

Since 2024, it has been reported that credit cards have been used to buy coins for bot-supported gifting (often termed as "投げ銭" or "nagesen") during live streams, leading to significant financial losses, amounting to millions of yen. The immediacy and anonymity associated with digital goods make them appealing to fraudsters. Unfortunately, victims often fail to notice the illicit activities until it’s too late, highlighting an urgent need for enhanced user authentication and account monitoring measures.

2. Rise of the InfoStealer Malware

The report also highlights a concerning increase in damage caused by "InfoStealer", a type of malware specifically designed to exfiltrate sensitive information. Through methods such as phishing ads on social media and fake CAPTCHA prompts, infections can easily occur, leading to the theft of login credentials and credit card information stored on personal computers. Moreover, this malware is being exploited to hijack securities accounts, stressing the importance of implementing stringent multi-factor authentication and malware defenses.

Overview of Credit Card Information Leaks and Fraudulent Activities (Q1 2025)

The report systematically breaks down the data pertaining to credit card information breaches in specific categories:
1. Chronological Timeline of Credit Card Information Leaks
- Trends regarding the frequency and count of leaked information
- Analysis based on industry types and periods
- Specific topics such as the uptick in InfoStealer-related breaches

2. General Trends in E-commerce Fraud Activities
- Trends in the financial losses associated with credit card fraud
- Observable patterns of fraudulent activity on e-commerce platforms
- Examination of DMARC settings within domestic financial institutions to mitigate fraud
- Noteworthy instances of fraudulent purchasing of digital gifts using stolen credit cards

3. Current Policy Developments
- A collaborative effort spearheaded by the Japan Credit Card Association and card companies aiming to shut down phishing websites.

The company's aim is to publish this report every January, April, July, and October, which might slightly vary each year. These reports are designed to inform stakeholders about the previous quarter's data.

Recommendations for Stakeholders

The Cashless Security Report is recommended for:

- Businesses wanting to learn about the realities of credit card fraud and protection strategies.
- Companies evaluating their exposure to fraudulent attacks compared to sector norms.
- Professionals keen on staying updated with the latest in fraudulent methodologies.

Cacco remains committed to conducting rigorous analyses concerning evolving fraudulent tactics while supporting the creation of secure online transactional environments.

About Cacco

Cacco has a vision to become the "game-changer of the future" by leveraging security, payment, and data science technologies. They focus on developing algorithms and software that supports businesses in overcoming challenges and fostering growth. The company provides leading services in fraud detection, including the widely adopted "O-PLUX" for unauthorized access and transaction alerts, as well as services to protect against phishing attempts.

About Link

Link offers a variety of subscription services, most notably the highly favored secure hosting platform, "at+link", and cloud-based hosting service "Link Bear Metal Cloud". Their cloud-based call center system, "BIZTEL", ranks as the top service for five consecutive years. Moreover, they engage in agricultural efforts, such as the "Nakahora Farm" located in the Iwate Prefecture.

For detailed reports and statistics, visit the links below: