Five arrested in $45 mn 'cyber heist'

Nov 18, 2013
A person takes out Euro banknotes from an automated teller machine at a cash point in Berlin on August 28, 2013

Five people were arrested Monday following a global "cyber heist" in which hackers stole $45 million by overriding the cash withdrawal limits of prepaid debit cards, US officials said.

According to the US Justice Department, those arrested were said to be members of the New York cell of an "international cybercrime organization, which used sophisticated intrusion techniques to hack into the systems of , steal prepaid debit card data, and make fraudulent ATM withdrawals on a global scale."

Officials said the cyber-ring managed to steal $45 million in late 2012 and early 2013 by manipulating the limits of prepaid from Abu Dhabi-based National Bank of Ras Al-Khaimah and Bank Muscat of Oman.

The five arrested individuals face charges unsealed in an indictment. Eight others were charged in May.

This type of heist is known in criminal circle as an "unlimited operation." Two were allegedly carried out: first on December 22 last year and again on February 19 and 20 this year.

In the first heist, more than 4,500 ATM transactions were conducted in some 20 countries around the world, resulting in $5 million in losses. In the second in February 2013, cybercells in 24 countries withdrew about $40 million from ATMs, according to officials.

In the initial stage, taking several months, sophisticated hackers allegedly infiltrated credit card processors' computer networks, looking into databases of prepaid debit cards, a tool used often by employers and aid organizations.

Breaking into the system, the hackers eliminated withdrawal limits imposed by banks.

Next, the cybergang distributed the to its street associates called "cashers," who loaded more magnetic stripe cards, like gift cards, with the stolen data.

Those arrested on Monday were identified as Anthony Diaz, Saul Franjul, Saul Genao, Jaindhi Polanco and Jose Angeley Valerio.

"As alleged, just a few months ago, after exploiting cyber-weaknesses in the financial system to steal millions from ATMs, these defendants were packing bags to the brim with stolen cash, destined for the cybercriminal organizers of these attacks," said US Attorney Loretta Lynch.

"Today, we have sent them packing once again—but this time, to jail. We will not relent until all those responsible for these financially devastating cybercrimes are brought to justice."

Authorities said newly seized photographic evidence revealed that the defendants sent $800,000 of cash proceeds in luggage by bus for delivery to a cyberheist organizer.

A sixth defendant, Franklyn Ferreira, is a fugitive from justice.

Of those charged earlier this year, four have pleaded guilty to charges in the case.

Explore further: Study: Social media users shy away from opinions

add to favorites email to friend print save as pdf

Related Stories

Hackers stole $45 million in bank card breach (Update)

May 09, 2013

A worldwide gang of criminals stole $45 million in a matter of hours by hacking their way into a database of prepaid debit cards and then draining cash machines around the globe, federal prosecutors said—and ...

World grapples with rise in cyber crime

May 11, 2013

International law enforcement agencies say the recent $45 million dollar ATM heist is just one of many scams they're fighting in an unprecedented wave of sophisticated cyberattacks.

4 Russians, 1 Ukrainian charged in massive hacking

Jul 25, 2013

(AP)—Four Russian nationals and a Ukrainian have been charged with running a sophisticated hacking organization that over seven years penetrated computer networks of more than a dozen major American and international corporations, ...

US payroll, financial firms hacked; eight charged (Update)

Jun 12, 2013

U.S. prosecutors announced fraud and other charges Wednesday against eight alleged members of an international cybercrime ring that the government said hacked into the computers of more than a dozen leading financial institutions ...

Estonian hacker pleads not guilty to bilking cash

Aug 07, 2010

An extradited Estonian hacker has pled not guilty to bilking the Royal Bank of Scotland of nine million dollars in a single day by tampering with its payroll debit cards around the world, US officials have ...

Recommended for you

WEF unveils 'crowdsourcing' push on how to run the Web

7 hours ago

The World Economic Forum unveiled a project on Thursday aimed at connecting governments, businesses, academia, technicians and civil society worldwide to brainstorm the best ways to govern the Internet.

Study: Social media users shy away from opinions

Aug 26, 2014

People on Facebook and Twitter say they are less likely to share their opinions on hot-button issues, even when they are offline, according to a surprising new survey by the Pew Research Center.

US warns shops to watch for customer data hacking

Aug 23, 2014

The US Department of Homeland Security on Friday warned businesses to watch for hackers targeting customer data with malicious computer code like that used against retail giant Target.

Fitbit to Schumer: We don't sell personal data

Aug 22, 2014

The maker of a popular line of wearable fitness-tracking devices says it has never sold personal data to advertisers, contrary to concerns raised by U.S. Sen. Charles Schumer.

Should you be worried about paid editors on Wikipedia?

Aug 22, 2014

Whether you trust it or ignore it, Wikipedia is one of the most popular websites in the world and accessed by millions of people every day. So would you trust it any more (or even less) if you knew people ...

How much do we really know about privacy on Facebook?

Aug 22, 2014

The recent furore about the Facebook Messenger app has unearthed an interesting question: how far are we willing to allow our privacy to be pushed for our social connections? In the case of the Facebook ...

User comments : 0