Cyber attacks hit global banks for $80 mn: study

Jun 26, 2012
A wave of cyber attacks has likely stolen at least $80 million from bank accounts in Europe, the United States and elsewhere, a security report said Tuesday.

A wave of cyber attacks has likely stolen at least $80 million from bank accounts in Europe, the United States and elsewhere, a security report said Tuesday.

The joint report by Guardian and McAfee said "Operation High Roller" was led by criminals attacking cloud-based servers in a global fraud campaign.

The report from the two US firms said the attacks tried to steal between $75 million and $2.5 billion (60 million to two billion euros) from at least 60 banks worldwide.

The ring used "sophisticated" techniques including automation and targeted high-value accounts in Europe before moving to and the United States, it said.

"This is a serious new threat that is actively targeting American financial institutions," a statement from Guardian Analytics said.

"To the best of our knowledge the scheme has already netted nearly $80 million worldwide, and it could be much higher."

The report offers insight into hacking into banks, which is often not disclosed by financial institutions.

"As this research study goes to press, we are working actively with international law enforcement organizations to shut down these attacks," the report said.

In the attacks uncovered earlier this year, the criminals "attempted transfers to mule business accounts as high as 100,000 euros," the report said.

"Where Europe has been the primary target for this and other rings in the past, our research found the thefts spreading outside Europe, including the United States and Colombia."

In the , "victims were all companies with commercial accounts with a minimum balance of several million dollars."

In most cases, the victims were found through online reconnaissance and "spear phishing," which uses a fake email to get an account holder's login details and password.

The first attacks affected "a popular bank in Italy and its consumer and business accounts" and used SpyEye and Zeus malware to transfer funds to a "mule account" or pre-paid debit card where the thief could retrieve the funds quickly and anonymously.

But later attacks showed increased automation and sophistication, in some cases taking over the victim's account without an attacker's active participation. In some cases, the criminals were able to bypass smartcard readers which offer extra authentication used in many European banks.

"This ring adds many breakthroughs: bypasses for physical 'chip and pin' authentication, automated mule account databases, server-based fraudulent transactions," the report said.

It said the attacks hit "every class of financial institution: credit union, large global bank, and regional bank."

In some attacks, transactions were routed through a server in California, but the researchers said they "found evidence of the fraudster logging in from Moscow, Russia, to manipulate some of the transactions."

Explore further: Study: Social media users shy away from opinions

add to favorites email to friend print save as pdf

Related Stories

Bogus training offer opens hacker doors to bank accounts

Feb 05, 2012

(PhysOrg.com) -- Mischief-making hackers, always willing to try clever ways to bypass advanced security safeguards, have figured out a way to make off like bandits, literally. According to a BBC report, the exploit first ...

Businesses vulnerable to cyber attacks

Aug 31, 2009

Most of us think cyber crooks cast their phishing lines mostly to try to hook everyday consumers. But some businesses across the country have seen hundreds of thousands of dollars vanish from their bank accounts after cyber ...

Phishers Use Call Forwarding to Mask Fraud

Apr 28, 2007

A phishing attack uncovered by SecureWorks tries to entice victims into forwarding their telephone calls in order to thwart out-of-band authentication by banks.

Canadian charged in US in Internet gambling case

Aug 06, 2009

A Canadian resident was indicted in the United States on fraud and related charges for processing some 350 million dollars for Internet gambling firms, officials said Thursday.

Citigroup says 360,000 affected by hackers

Jun 16, 2011

Hackers stole account information of more than 360,000 of Citigroup Inc.'s U.S. credit card customers in a recent data breach, the bank said Wednesday, almost double the number initially thought.

Recommended for you

Study: Social media users shy away from opinions

Aug 26, 2014

People on Facebook and Twitter say they are less likely to share their opinions on hot-button issues, even when they are offline, according to a surprising new survey by the Pew Research Center.

US warns shops to watch for customer data hacking

Aug 23, 2014

The US Department of Homeland Security on Friday warned businesses to watch for hackers targeting customer data with malicious computer code like that used against retail giant Target.

Fitbit to Schumer: We don't sell personal data

Aug 22, 2014

The maker of a popular line of wearable fitness-tracking devices says it has never sold personal data to advertisers, contrary to concerns raised by U.S. Sen. Charles Schumer.

Should you be worried about paid editors on Wikipedia?

Aug 22, 2014

Whether you trust it or ignore it, Wikipedia is one of the most popular websites in the world and accessed by millions of people every day. So would you trust it any more (or even less) if you knew people ...

Philippines makes arrests in online extortion ring

Aug 22, 2014

Philippine police have arrested eight suspected members of an online syndicate accused of blackmailing more than 1,000 Hong Kong and Singapore residents after luring them into exposing themselves in front of webcam, an official ...

User comments : 1

Adjust slider to filter visible comments by rank

Display comments: newest first

frajo
not rated yet Jun 27, 2012
en.wikipedia.org/wiki/Zeus_(trojan_horse) :
"The Zeus botnet targets only Microsoft Windows machines. The botnet does not work on Mac OS X, Linux, or any other operating system."
They don't even mention my OS.