25 February 2018
Keith Appleyard

Please Engage Brain

Keith Appleyard - available for hire

60Posts 301,324Views 107Comments


A place to share stuff that isn't at all fintec related but is amusing, absurd or scary.

University loses nearly 1 million dollars to malware

02 September 2010  |  5113 views  |  1

Thieves appear to have stolen the funds from University of Virginia after compromising a computer belonging to the University's Financial Controller. Malware intercepted the Online Banking Credentials for the University's Bank accounts and initiated a fraudulent wire transfer for $996,000 to a  Bank in China.

Whereas, because of a £10,000 per day limit on my UK Online Banking via BACS, when I was transferring £125,000 yesterday via CHAPS, RBS called up our dual Signatures on File, checked my Passport & Debit Card, and recorded me on CCTV. I was happy that they had done their due diligences.

Times like this prove that automated chaos is just faster chaos. Why would the University of Virginia not have arranged for a limit on their Online Banking Account - say $100,000?   

TagsSecurityRisk & regulation

Comments: (1)

John Dring
John Dring - Intel Network Services - Swindon | 03 September, 2010, 11:43

Crazy. Banks are supposedly desperate to hold onto capital funds, so you'd think they'd pass this up a notch and do some checks prior to transferring a million.

Also, if transferred 'in error' or in suspected fraud cases, don't banks have the ability to recall the transfer.  Presumably it was noticed pretty quickly.  I know if money is erroneously transferred to my lowly account in error, it is soon recalled. And even if I have withdrawn it, the recall still happens and puts me in debt.  And to withdraw the $1m from the receiving bank should attract a second set of checks.  Taking just $5k out in the UK often requires photo ID and KYC.  Something doesn't seem right here - the University Bank should have had better safeguards.

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Comment on this story (membership required)

Latest posts from Keith

Barclays On-line Banking deserves better error messages

02 January 2014  |  14055 views  |  1 comments | recomends Recommends 0 TagsMobile & onlinePaymentsGroupWhatever...

RBS does have robust procedures

01 October 2013  |  3558 views  |  0 comments | recomends Recommends 0 TagsMobile & onlinePaymentsGroupWhatever...

National Savings and Investments are rather too lethargic

17 April 2013  |  13930 views  |  0 comments | recomends Recommends 1 TagsSecurityMobile & onlineGroupWhatever...

RBS Internet Banking is not for the English

28 January 2013  |  5632 views  |  0 comments | recomends Recommends 0 TagsMobile & onlineGroupWhatever...

RBS don't seem to understand basic book-keeping rules

26 June 2012  |  6405 views  |  5 comments | recomends Recommends 2 TagsPaymentsGroupWhatever...

Keith's profile

job title IT Consultant
location Bromley
member since 2008
Summary profile See full profile »
Focussing on IT Strategy and Systems Architecture issues, primarily in the Payment Card Industry - scope is Global. SME on topics such as Data Protection and Encryption.

Keith's expertise

Member since 2007
60 posts107 comments
What Keith reads

Who's commenting on Keith's posts