TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

F5 Labs

How a Sneaker Bot Earned $2M Profit from One Shoe Drop

2023-06-06 · Read original ↗

ATT&CK techniques detected

4 predictions
T1583.005Botnet
55%
“get an inside look into the operations of these bots and were able to track the activities of these resellers from start to finish without showing our hand. this allowed us to track the acquired inventory all the way to the secondary markets and to final consumers. this case stud…”
T1584.005Botnet
42%
“get an inside look into the operations of these bots and were able to track the activities of these resellers from start to finish without showing our hand. this allowed us to track the acquired inventory all the way to the secondary markets and to final consumers. this case stud…”
T1585Establish Accounts
38%
“especially during high demand shoe drops. as a result, resellers who operate the sneaker bots are forced to create a large number of user accounts on the retailer ’ s system that they then use to make the purchases. they therefore need to coordinate and automate the process of cr…”
T1657Financial Theft
31%
“traffic seen in figure 1 is driven by a large number of individual sneaker bots. some are small scale operated by lone individuals that want to acquire a pair or two for personal use, while some of the traffic originates from large scale resellers that attempt to buy hundreds of …”

Summary

Explore a highly automated attack against a sneaker manufacturer and learn how resellers optimize their bots for success, and profit!