23 July 2014

Finblog

Paul Penrose - Finextra

307 | posts 1,194,234 | views 234 | comments
A post relating to this item from Finextra:

CheckFree Web site hijacked by Eastern European criminals

04 December 2008  |  11203 views  |  0
Ukrainian hackers seized control of two CheckFree Web domains on Tuesday and redirected users to a Web address that tried to install malware on visitor desktops.

CheckFree hack sets off alarm bells

08 December 2008  |  3290 views  |  0

The Washington Post's Security Fix blog has dug a little deeper into the attack on CheckFree's bill payment Website last week.

CheckFree has admitted that hackers had, for several hours, redirected visitors to its customer login page to a Web site in Ukraine that tried to install password-stealing software.

But the company has said little else about the attack and has yet to divulge any further details.

Security Fix cites an anonymous source involved in the investigation who suggests that up to 5000 users were directed to the bogus site during the attack.

More worryingly, both for CheckFree and the bank's that rely on its platforms, is the ease with which the assailants perpetrated the assault.

It appears that the Eastern European crime gang behind the scam obtained the user name and password needed to make account changes at the Web site of Network Solutions, CheckFree's domain registrar.

We can speculate about how this happened - as a result of an inside job, a sophisticated phishing expedition, or a password-stealing Trojan on an infected employee computer.

Network Solution's, Checkfree's domain registrar, will not enter into discussions about the additional security measures in place to protect against such Web site hijackings.

Which raises the distinct possibility that all you need to take ownership of a legitimate, trusted and high-profile Web domain is a single set of user credentials.

As Gartner's Avivah Litan tells Security Fix: "If all that's protecting a bank's Web site is a user name and password, that's kind of like having a massive vulnerability in the core of the Internet. This could have been a lot worse, and if they can do it to CheckFree, they can do it to other banks."

TagsSecurityRetail banking

Comments: (0)

Comment on this story (membership required)
Log in to receive notifications when someone posts a comment

Latest posts from Paul

ANZ and Visa lose the plot

30 June 2011  |  5662 views  |  0  |  Recommends 0 TagsMobile & onlineRetail banking

Don't give up the day job...ever

20 May 2010  |  5013 views  |  0  |  Recommends 0 TagsTrade executionWholesale bankingGroupWhatever...

Now we are ten

19 April 2010  |  5470 views  |  3  |  Recommends 0 TagsRetail bankingWholesale banking

Finextra's Best of the Web

05 March 2010  |  4909 views  |  1  |  Recommends 0 TagsRetail bankingWholesale banking

The ATM was the last great financial innovation

25 February 2010  |  8205 views  |  8  |  Recommends 0 TagsRetail bankingWholesale bankingGroupFinance 2.0
name

Paul Penrose

job title

Head of Research

company name

Finextra

member since

2007

location

London

Summary profile See full profile »
I'm responsible for editorial content and quality control across the full range of Finextra media...

Paul's expertise

Who is commenting on Paul's posts