BreachExchange mailing list archives
Biggest Bank Robbery EVER!
From: blitz <blitz () strikenet kicks-ass net>
Date: Wed, 27 Jun 2012 14:13:30 -0400
Closely related to our topic. http://news.sky.com/story/952931/fraud-ring-in-hacking-attack-on-60-banks Sixty million euro has been stolen from bank accounts in a massive cyber bank raid after fraudsters raided dozens of financial institutions around the world. According to a joint report by software security firm McAfee and Guardian Analytics, more than 60 firms have suffered from what it has called an "insider level of understanding". "The fraudsters' objective in these attacks is to siphon large amounts from high balance accounts, hence the name chosen for this research - Operation High Roller," the report said. "If all of the attempted fraud campaigns were as successful as the Netherlands example we describe in this report, the total attempted fraud could be as high as 2bn euro (ã1.6bn)." The automated malicious software programme was discovered to use servers to process thousands of attempted thefts from both commercial firms and private individuals. The stolen money was then sent to so-called mule accounts in caches of a few hundreds and 100,000 euro (ã80,000) at a time. Credit unions, large multinational banks and regional banks have all been attacked. Sky News defence and security editor Sam Kiley said: "It does include British financial institutions and has jumped over to North America and South America. "What they have done differently from routine attacks is that they have got into the bank servers and constructed software that is automated. "It can get around some of the mechanisms that alert the banking system to abnormal activity." The details of the global fraud come just a day after the MI5 boss warned of the new cyber security threat to UK business. McAfee researchers have been able to track the global fraud, which still continues, across countries and continents. "They have identified 60 different servers, many of them in Russia, and they have identified one alone that has been used to steal 60m euro," Kiley said. "There are dozens of servers still grinding away at this fraud â in effect stealing money." _______________________________________________ Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org) Archived at http://seclists.org/dataloss/ Unsubscribe at http://datalossdb.org/mailing_list Supporters: Risk Based Security (http://www.riskbasedsecurity.com/) Risk Based Security equips organizations with security intelligence, risk management services and on-demand security solutions to establish customized risk-based programs to address information security and compliance challenges. Tenable Network Security (http://www.tenable.com/) Tenable Network Security provides a suite of solutions which unify real-time vulnerability, event and compliance monitoring into a single, role-based, interface for administrators, auditors and risk managers to evaluate, communicate and report needed information for effective decision making and systems management.
Current thread:
- Biggest Bank Robbery EVER! blitz (Jun 29)