06 July 2015

Cybercrooks scent rich pickings from Sepa migration

23 November 2012  |  5533 views  |  0 Euro Coin on EU Flag

The migration of European banks and corporates to a Single Euro Payments Area (Sepa) is creating a rich new target for cybercrooks, says McAfee, which has identified a recent attempt to steal EUR61,000 from German banks.

The scammers use variations of the Zeus and SpyEye Trojans to infiltrate targeted corporate accounts with the specific goal of initiating Sepa Credit Transfers to mules across the EU

The malicious "webinjects" targetted two German banks with a specially crafted JavaScript payload deployed to about a dozen of their online banking customers which have Sepa as an option, says McAfee. The campaigns are hard to detect because they infect only a few dozen customers and take advantage of the automated channels developed by banks to distribute Sepa payments.

The system, which is being run out of Moscow, is hard-coded to allow up to a maximum of €100,000 for a single Sepa transaction and a minimum of €1,000.

"For one of the financial institutions targeted, we estimated from the log files we retrieved that €61,000 in attempted Sepa transactions were made to mule accounts," says McAfee. "Some of the accounts had more than €50,000 as the standing account balances."
KeywordsSEPA

Comments: (0)

Comment on this story (membership required)
Log in to receive notifications when someone posts a comment

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board, sign up now.

Related blogs

Create a blog about this story (membership required)

Related stories

09 November, 2012
24 October, 2012
04 October, 2012
26 June, 2012
14 May, 2012
29 March, 2012
27 March, 2012
21 March, 2012
14 February, 2012
Your browser is unable to support Flash files.

Top topics

Most viewed Most shared
Barclays takes on Apple with wearable paym...
9254 views comments | 39 tweets | 35 linkedin
Singapore pledges S$225m to fintech
8961 views comments | 33 tweets | 24 linkedin
US banks pump $16.6bn into digital transfo...
7477 views comments | 38 tweets | 24 linkedin
Greeks flock to Bitcoin
6388 views comments | 31 tweets | 18 linkedin
UK payments regulator calls for 'pipes and...
5825 views comments | 27 tweets | 20 linkedin

Featured job

to £100K base, double OTE, stock options
London, UK

Find your next job