Threat Research

Gambling is No Game: DNS Links Between Chinese Organized Crime and Sports Sponsorships

Infoblox

This report uncovers a technology suite operated by Vigorish Viper, linked to Chinese organized crime, money laundering, and human trafficking in Southeast Asia. The suite supports a vast illegal gambling network preying on residents of Greater China and involves European sports sponsorships to promote online betting. Affected: Vigorish Viper, Yabo Group, Greater China, European Sports Betting

Keypoints :

  • The technology suite operated by Vigorish Viper connects to Chinese organized crime activities, including money laundering and human trafficking.
  • Asian residents wager approximately US0 billion annually on illegal gambling, with a major focus on the Greater China region.
  • Yabo Group is believed to be the developer of Vigorish Viper’s technology and is linked to forced labor and modern slavery practices in Cambodia and Laos.
  • Suspensions were imposed on multiple betting brands associated with Vigorish Viper by the U.K. Gambling Commission.
  • The operation utilizes European sports sponsorships to illicitly advertise online gambling platforms in China.
  • Vigorish Viper employs advanced technology for user monitoring and traffic distribution to evade detection.

MITRE Techniques :

  • TA0007 – Web Service: Implemented through the use of a comprehensive cybercrime tech suite to facilitate illegal gambling.
  • TA0040 – Impact: Financial gain from illegal gambling and human trafficking operations.
  • T1583.001 – Acquire Infrastructure: Utilizes a network of shell companies and white label intermediaries to operate without scrutiny.
  • T1592 – Gather Information: Engages in data mining and user monitoring to enhance operations and evade law enforcement.
  • T1556 – Modify Configuration: Sophisticated DNS configurations and traffic distribution systems protect the operational integrity of the illegal sites.

Indicator of Compromise :

  • [Domain] yabo.com
  • [Domain] tgp-europe.com
  • [Domain] vgvipernetwork.com (Hypothetical example, not explicitly mentioned)
  • [Domain] skg-gaming.com (Hypothetical example, not explicitly mentioned)
  • [Domain] kaiyun.com (Hypothetical example, not explicitly mentioned)

Full Story: https://blogs.infoblox.com/threat-intelligence/gambling-is-no-game-dns-links-between-chinese-organized-crime-and-sports-sponsorships/

SHARE THIS STORY

WhatsAppX (Twitter)TelegramBlueskyFacebookLinkedInThreadsEmailPrint