Oct 31, 2008 : Cyber Gang Steals 500k+ Accounts
📅 - The RSA Fraud Action Research Lab (rsa.com) research team recently found out that a cyber gang has single-handedly stolen over 500,000 bank and credit card account numbers using trojan software, making it one of the largest stolen data caches ever recovered.
The security firm details its findings in a blog post Friday (rsa.com/blog/blog_entry.aspx?id=1378), calling the trojan "one of the most pervasive and advanced pieces of crimeware ever created by fraudsters".
Over the past two-and-a-half years, the fraudsters have used "Sinowal" Trojan, which is also known as "Torpig" and "Mebroot", to steal more than 270,000 online bank accounts credentials and an estimated 240,000 credit and debit account numbers from Microsoft Windows PC owners.
Sinowal programmers have usually distributed the Trojan by embedding malicious code into many legitimate websites.
When people visit these sites, the program will automatically attempt to install the Trojan on their PCs using one of many security holes found in Internet browsers.
The cache found among Sinowal-infected computers dates back to February 2006. Although the RSA is not completely sure who is responsible for the attacks, they do suspect the attacks are tied to Russian malware gangs.
According to the RSA, the trojan software has kept "one of the most hidden and reliable communication infrastructures," while maintaining the stolen data "methodically organized within a well-organized repository."
The security firm details its findings in a blog post Friday (rsa.com/blog/blog_entry.aspx?id=1378), calling the trojan "one of the most pervasive and advanced pieces of crimeware ever created by fraudsters".
Over the past two-and-a-half years, the fraudsters have used "Sinowal" Trojan, which is also known as "Torpig" and "Mebroot", to steal more than 270,000 online bank accounts credentials and an estimated 240,000 credit and debit account numbers from Microsoft Windows PC owners.
Sinowal programmers have usually distributed the Trojan by embedding malicious code into many legitimate websites.
When people visit these sites, the program will automatically attempt to install the Trojan on their PCs using one of many security holes found in Internet browsers.
The cache found among Sinowal-infected computers dates back to February 2006. Although the RSA is not completely sure who is responsible for the attacks, they do suspect the attacks are tied to Russian malware gangs.
According to the RSA, the trojan software has kept "one of the most hidden and reliable communication infrastructures," while maintaining the stolen data "methodically organized within a well-organized repository."
Reads: 1765 | Category: General | Source: TheWHIR : Web Host Industry Reviews
URL source: http://www.thewhir.com/marketwatch/103108_Cyber_Gang_Steals_500k_Accounts.cfm
Want to add a website news or press release ? Just do it, it's free! Use add web hosting news!
📅 - 
📅 -