29 September 2016
Find out more

High rolling cyber-crooks are smashing bank security safeguards

26 June 2012  |  7736 views  |  3 anonymous figure in front of stock exchange

A new, sophisticated breed of cyber-crooks targeting bank accounts belonging to businesses and high-net worth individuals around the world may have stolen EUR60 million over the last year, according to an investigation from McAfee and Guardian Analytics.

The pair say that they have observed a crime ring building on the established Zeus and SpyEye malware to develop attacks against at least 60 financial institutions in Europe, the US and Latin America.

Most Zeus/SpyEye attacks rely on manual components and active participation by the fraudster, using social engineering to compromise computers before planting malware and executing a Man-in-the-Browser attack to skim details that let them carry out transfers.

In contrast, although there can be live intervention in the most high-value transactions, most of the new 'High Roller' process is completely automated, allowing repeated thefts once the system has been launched at a given financial institution or for a given Internet banking platform.

In March crooks used server-side automated attacks to compromise more than 5000 - mainly business - accounts at two Dutch banks, attempting to wire around EUR35.6 million out of the country in transfers of up to EUE100,000 a time.

All of the attacks spotted by McAfee could bypass complex multi-stage authentication and chip and PIN. Unlike recent attacks that collect simple form authentication data - a security challenge question, a one-time token, or PIN - this can get past the extensive physical authentication required by swiping a card in a reader and typing the input into a field.

Separately, Jonathan Evans, director general of the UK's domestic security service, MI5, has claimed in a speech that state-sponsored cyber-attacks cost a single listed UK company around £800 million in lost potential revenues.

Evans says that his organisation is fighting "astonishing" levels of cyber attacks on UK industry, warning that the Olympic Games will prove an "attractive target" for terrorists".

Read the McAfee-Guardian Analytics report here:» Download the document now 1.1 mb (PDF File)

Comments: (3)

Alexander Peschkoff
Alexander Peschkoff - TEDIPAY - London | 26 June, 2012, 11:29

It was not the "chip and PIN" that the attackers managed to bypass, it was a particular security protocol (badly designed and implemented).

 

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Jan-Olof Brunila
Jan-Olof Brunila - Swedbank - Stockholm | 27 June, 2012, 07:33

If there is a secure chip card reader/pin pad similar to the ones uesd in merchant outlets for card payments, integrated to the workstation,  it should not be possible for "malware" to compromize the transaction. These wrongful and sensational news spur the authorities to regulate on "maximal security" measures for internet payments like the  European Central Bank proposed Recommendation on Security for Internet Payments does. There should be more fact based and analytical reporting explaining why fraud could happen and not simple bulletins in order to sell more anti fraud systems.  

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Ketharaman Swaminathan
Ketharaman Swaminathan - GTM360 Marketing Solutions - Pune | 28 June, 2012, 10:10

@Jan-OlofB+1.

Not saying that businesses should reconcile themselves to fraud but, as the famous saying goes, "No risk, no gain". End of the day, the Cost of Anti-Fraud Systems + Revenue Loss due to False Positives + Revenue Loss due to Friction-Caused Abandonment shouldn't exceed the Amount of Fraud Prevented.

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

EC plans cybercrime centre to fight online crooks

EC plans cybercrime centre to fight online crooks

29 March 2012  |  6699 views  |  1 comments
Cybercrime a growing risk for FS firms - PwC survey

Cybercrime a growing risk for FS firms - PwC survey

27 March 2012  |  6425 views  |  0 comments | 1 linkedin
Russian security services bust notorious malware ring

Russian security services bust notorious malware ring

21 March 2012  |  6099 views  |  0 comments
UK banks wage cyber war games

UK banks wage cyber war games

22 November 2011  |  6773 views  |  0 comments

Related company news

 

Related blogs

Create a blog about this story (membership required)
Find out moreVisit www.smartstream-stp.comVisit equens.com

Top topics

Most viewed Most shared
RBS tests demonstrate ability of Ethereum to support a national domestic payments systemRBS tests demonstrate ability of Ethereum...
14442 views comments | 55 tweets | 48 linkedin
Ripple rudely gatecrashes Sibos partyRipple rudely gatecrashes Sibos party
9400 views comments | 30 tweets | 29 linkedin
Swift beware: Ripple signs banks to global payments steering groupSwift beware: Ripple signs banks to global...
9115 views comments | 33 tweets | 18 linkedin
BNP Paribas is working with clients on blockchain deploymentBNP Paribas is working with clients on blo...
7428 views comments | 14 tweets | 30 linkedin
US gets same day ACHUS gets same day ACH
7000 views comments | 23 tweets | 19 linkedin

Featured job

Find your next job