With a thriving market for criminal-to-criminal (C2C) services and a flourishing underground ecosystem of tools and information at their disposal, cybercriminals continue to expand their botnet-based infrastructure, hone attack tactics, and operate their criminal enterprises with practical impunity. Current defensive tactics are clearly not enough to stem the tide of thefts, fraud, and other attacks that pose constant threat the financial sector. A more aggressive defense is needed against advanced account takeover malware – one that applies threat intelligence to disrupt cybercrime operations and profits.