Wave of cyber attacks to target US banks: researcher

Oct 05, 2012
As many as 30 US banking firms are expected to be targeted in a wave of cyber attacks as part of "a large-scale orchestrated crimeware campaign," a security researcher says.

As many as 30 US banking firms are expected to be targeted in a wave of cyber attacks as part of "a large-scale orchestrated crimeware campaign," a security researcher says.

Mor Ahuvia of the RSA said in a blog post this week that a "cyber gang" has communicated plans to launch a Trojan attack spree involving "bots" or automated control of infected computers.

"Planned for this fall, the blitzkrieg-like series of Trojan is set to be carried out by approximately 100 botmasters," he wrote. "RSA believes this is the making of the most substantial organized banking-Trojan operation seen to date."

Ahuvia said the attackers plan to use malware called "Gozi Prinimalka," which is a term derived from the Russian word meaning "to receive."

"According to underground chatter, the gang plans to deploy the Trojan in an effort to complete fraudulent wire transfers via Man-In-The-Middle manual session-hijacking scenarios," he said.

RSA said the gang claims that since 2008 their Trojan has been able to siphon $5 million from American bank accounts.

The new attacks, if successfully launched, may be felt by targeted banks in a month or two, RSA said.

"The spree's longevity, in turn, will depend on how fast banks and their security teams implement countermeasures against the heretofore-secret banking-Trojan," Ahuvia said.

The warning comes after several US banks appeared to be targeted by so-called , which aim to bring down websites by flooding the networks with data requests.

US Bank acknowledged last week its website was the target of "attacks" aimed at disrupting its system but that and financial information were not compromised.

PNC Bank, Wells Fargo and others experienced problems as well.

The problems arose after a group calling itself "Cyber fighters of Izz ad-din Al qassam" announced that three banks would be targeted for the second week of "Operation Ababil."

The "cyber fighters" group said it launched attacks under the name "Operation Ababil," meaning "Swarm," against the websites of Bank of America and the New York Stock Exchange on September 18, and Chase on September 19.

Explore further: Twitter rules out Turkey office amid tax row

add to favorites email to friend print save as pdf

Related Stories

Wells Fargo website down in wake of threat

Sep 26, 2012

Wells Fargo's website was experiencing problems Wednesday, after a threat against US banking firms from a group pledging retaliation for an online video that has sparked unrest in the Muslim world.

Islamist group warns of new cyber attacks on US banks

Sep 25, 2012

An Islamist group on Tuesday said it will carry out new cyber attacks on US banking targets, according to SITE Intelligence Group, following similar attacks last week in response to an anti-Islam film.

US finance sector warned of cyber attacks

Sep 19, 2012

A US financial industry group warned banks and other institutions to beware cyber attacks Wednesday, after some firms reported sporadic problems with their websites.

Bogus training offer opens hacker doors to bank accounts

Feb 05, 2012

(PhysOrg.com) -- Mischief-making hackers, always willing to try clever ways to bypass advanced security safeguards, have figured out a way to make off like bandits, literally. According to a BBC report, the exploit first ...

Recommended for you

Twitter rules out Turkey office amid tax row

17 hours ago

Social networking company Twitter on Wednesday rejected demands from the Turkish government to open an office there, following accusations of tax evasion and a two-week ban on the service.

How does false information spread online?

19 hours ago

Last summer the World Economic Forum (WEF) invited its 1,500 council members to identify top trends facing the world, including what should be done about them. The WEF consists of 80 councils covering a wide range of issues including social media. Members come ...

User comments : 3

Adjust slider to filter visible comments by rank

Display comments: newest first

1 / 5 (2) Oct 05, 2012
Thanks for the warning.
Glad I don't keep my money in banks anymore.
I used to keep money in the bank so it wouldn't get stolen.
Now, banks seem to think they can just hand your money out to anyone. And, just try to get a bank to reverse a wrong... unless, of course, the adjustment is in THEIR favor... The famous clause reads that if YOU walk away from the window, all transactions are considered final... even if you can prove they're wrong. I lost a half a month's income to a teller who jiggled the deposit slip to make it disappear. When confronted, the bank manager said, "Once you walk away from the window, there's nothing we can do." I've often wondered how much of that money she had to share with him, to keep her job... I'll bet the bank manager got some that night... and, if he played it right, many times after. I can only hope he keeps her bow-legged and sore for a long time. I'd like to think my money went to a good cause.
1 / 5 (1) Oct 06, 2012
If you saw how much they cheap out on the ATM systems ud know why this is so stupid. The last ATM i serviced had windows xp, pentium3 400mhz and 128mb ram. They just plug the damn things into the internet and just hope they will be ok. If they used up to date systems with multiple encryption layers and silly long encryption cyphers they'd have loads more protection. But then that would eat into profits..... well I guess as they start losing money they will be forced to change eventually... if not then they are uber stupid.
1 / 5 (1) Oct 06, 2012
Oh, oh. I'd better put my money under the cyber mattress.

More news stories

'Chief Yahoo' David Filo returns to board

Yahoo announced the nomination of three new board members, including company co-founder David Filo, who earned the nickname and formal job title of "Chief Yahoo."

Simplicity is key to co-operative robots

A way of making hundreds—or even thousands—of tiny robots cluster to carry out tasks without using any memory or processing power has been developed by engineers at the University of Sheffield, UK.

Floating nuclear plants could ride out tsunamis

When an earthquake and tsunami struck the Fukushima Daiichi nuclear plant complex in 2011, neither the quake nor the inundation caused the ensuing contamination. Rather, it was the aftereffects—specifically, ...

New clinical trial launched for advance lung cancer

Cancer Research UK is partnering with pharmaceutical companies AstraZeneca and Pfizer to create a pioneering clinical trial for patients with advanced lung cancer – marking a new era of research into personalised medicines ...

More vets turn to prosthetics to help legless pets

A 9-month-old boxer pup named Duncan barreled down a beach in Oregon, running full tilt on soft sand into YouTube history and showing more than 4 million viewers that he can revel in a good romp despite lacking ...