23 February 2017
visit nextgenbanking.co.uk

Cybercrooks scent rich pickings from Sepa migration

23 November 2012  |  6065 views  |  0 Euro Coin on EU Flag

The migration of European banks and corporates to a Single Euro Payments Area (Sepa) is creating a rich new target for cybercrooks, says McAfee, which has identified a recent attempt to steal EUR61,000 from German banks.

The scammers use variations of the Zeus and SpyEye Trojans to infiltrate targeted corporate accounts with the specific goal of initiating Sepa Credit Transfers to mules across the EU

The malicious "webinjects" targetted two German banks with a specially crafted JavaScript payload deployed to about a dozen of their online banking customers which have Sepa as an option, says McAfee. The campaigns are hard to detect because they infect only a few dozen customers and take advantage of the automated channels developed by banks to distribute Sepa payments.

The system, which is being run out of Moscow, is hard-coded to allow up to a maximum of €100,000 for a single Sepa transaction and a minimum of €1,000.

"For one of the financial institutions targeted, we estimated from the log files we retrieved that €61,000 in attempted Sepa transactions were made to mule accounts," says McAfee. "Some of the accounts had more than €50,000 as the standing account balances."
KeywordsSEPA

Comments: (0)

Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

Sentenial embarks on EUR20 million expansion as Sepa End Date looms

Sentenial embarks on EUR20 million expansion as Sepa End Date looms

09 November 2012  |  8320 views  |  0 comments | 3 tweets | 5 linkedin
Belgian banks to shift payments to France's Stet platform

Belgian banks to shift payments to France's Stet platform

24 October 2012  |  7027 views  |  0 comments | 11 tweets | 4 linkedin
High rolling cyber-crooks are smashing bank security safeguards

High rolling cyber-crooks are smashing bank security safeguards

26 June 2012  |  7861 views  |  3 comments
Banks see corporates as key to Sepa success

Banks see corporates as key to Sepa success

14 May 2012  |  7354 views  |  0 comments
EC plans cybercrime centre to fight online crooks

EC plans cybercrime centre to fight online crooks

29 March 2012  |  6826 views  |  1 comments
Cybercrime a growing risk for FS firms - PwC survey

Cybercrime a growing risk for FS firms - PwC survey

27 March 2012  |  6542 views  |  0 comments | 1 linkedin
Russian security services bust notorious malware ring

Russian security services bust notorious malware ring

21 March 2012  |  6232 views  |  0 comments
MEPs vote for 2014 Sepa deadline

MEPs vote for 2014 Sepa deadline

14 February 2012  |  10526 views  |  2 comments

Related blogs

Create a blog about this story (membership required)
visit dh.com Visit Yelloco.co.uk

Top topics

Most viewed Most shared
IBM and Visa join forces to turn billions of connected devices into points of saleIBM and Visa join forces to turn billions...
19090 views 11 comments | 56 tweets | 92 linkedin
hands typing furiouslyBlockchain Technology
11332 views 1 | 11 tweets | 4 linkedin
EBA to relax controversial PSD2 authentication rulesEBA to relax controversial PSD2 authentica...
10324 views comments | 49 tweets | 67 linkedin
RBS to become fintech fund and high street outlet for challenger banks under HMT remedyRBS to become fintech fund and high street...
7717 views comments | 37 tweets | 33 linkedin
Standard Chartered connects corporate customers to WeChatStandard Chartered connects corporate cust...
6120 views comments | 17 tweets | 19 linkedin

Featured job

Six Figure Base + Commission + Stock Options
London

Find your next job