Billion Dollar Cyber Crime Chief Finally Caught
A man has been arrested for allegedly stealing more than a billion dollars in cyber attacks. The tactics were so outlandish, they almost sounded like the words used by Richard Pryor's character in Superman III.
The unnamed man was arrested in Spain after an investigation that involved officials from six countries on three continents plus private cyber security firms. The man is alleged to have led a gang that attacked more than 100 banks and other financial institutions around the world.
The gang has been operating for at least three years using three forms of malware, known as Anunak, Carbanak and Cobalt Strike. The last of these was customized from legitimate software designed to test security on computer networks.
Phishing Emails Breached Networks
The attacks started with phishing scams where bank employees were targeted with bogus emails that contained attachments. Once opened, these attachments installed the malware, spread across a bank's network, and then infected the computers that controlled ATMs.
The gang then exploited the malware in three increasingly jaw dropping ways. At the simplest, they accessed electronic payment networks and simply transferred the bank's own money to their accounts.
At the next level, they accessed the databases that keep track of customer bank balances. They then increased the listed balance before immediately withdrawing cash from ATMS. (Source: bbc.co.uk)
ATMs Spat Out Bills
The most audacious method, however, was to gain control of the ATMs themselves and force them to eject cash as if somebody was making a withdrawal. Other gang members were waiting by the machines to grab the money and flee.
The money was then used to buy units of virtual "cryptocurrencies" before being turned back into traditional cash balances on cards. Once that was complete, they used the money to buy cars and houses, making it harder to trace the culprits.
Some of the gang's operations collected more than €10 million (US $12.3 million). Altogether the gang is believed to have raked in more than a billion euros (US $1.23 billion) across 40 countries. (Source: europa.eu)
What's Your Opinion?
Are you surprised the gang was able to pull off such outlandish thefts for so long? Do the banks bear any responsibility for the security holes? Should financial institutions ban the receipt of external emails on internal network computers?
Most popular articles
- Which Processor is Better: Intel or AMD? - Explained
- How to Prevent Ransomware in 2018 - 10 Steps
- 5 Best Anti Ransomware Software Free
- How to Fix: Computer / Network Infected with Ransomware (10 Steps)
- How to Fix: Your Computer is Infected, Call This Number (Scam)
- Scammed by Informatico Experts? Here's What to Do
- Scammed by Smart PC Experts? Here's What to Do
- Scammed by Right PC Experts? Here's What to Do
- Scammed by PC / Web Network Experts? Here's What to Do
- How to Fix: Windows Update Won't Update
- Explained: Do I need a VPN? Are VPNs Safe for Online Banking?
- Explained: VPN vs Proxy; What's the Difference?
- Explained: Difference Between VPN Server and VPN (Service)
- Forgot Password? How to: Reset Any Password: Windows Vista, 7, 8, 10
- How to: Use a Firewall to Block Full Screen Ads on Android
- Explained: Absolute Best way to Limit Data on Android
- Explained: Difference Between Dark Web, Deep Net, Darknet and More
- Explained: If I Reset Windows 10 will it Remove Malware?
My name is Dennis Faas and I am a senior systems administrator and IT technical analyst specializing in cyber crimes (sextortion / blackmail / tech support scams) with over 30 years experience; I also run this website! If you need technical assistance , I can help. Click here to email me now; optionally, you can review my resume here. You can also read how I can fix your computer over the Internet (also includes user reviews).
We are BBB Accredited
We are BBB accredited (A+ rating), celebrating 21 years of excellence! Click to view our rating on the BBB.
Comments
Fire the accountant
This cyber crime team must have been really good at accounting to be able to pull off such feats for 3 entire years. Balances need to "check", so I am not sure how they were able to pull this off for so long without an internal alarm going off. At any rate I'm glad they were caught. Let's hope the same efforts can be put forth to catching the cyber crooks in India that scam people out of billions each year!
ATMs still using Windows XP?
Dennis,
I don't know if it is still true, but up until a year or so ago most ATMs were still using Windows XP. That may have facilitated the schemes you described.
Stu
XP???
Your bank's ATMs use Windows XP??? Wow. I think my bank uses DOS Version 4 on a 286 processor.
Comment about XP, By odd luck
Comment about XP, By odd luck I was in my bank today and joked about that exact question.
They said they were not. Besides that was Win-XP Embedded. And the support was longer than the rest of XP. AND if the banks wanted to use the machines after the Official End of Life of that version they could always pay ton$ of ca$h and buy longer $upport.
I know for a fact that the
I know for a fact that the ATM machine where I work that is owned by a local band still has windows XP running on the ATM machine but who knows how many ATM's that this bank owns or other local banks around here are still running outdated windows software in them and I have seen where thieves have installed fake card readers on ATM machines and fuel pump card readers and have also installed wireless devices inside fuel pumps to read someone's credit card information and was able to get their card info just by a wireless connection and sitting in their vehicle a few feet away with their laptop some other computer device like maybe an I-PAD
About card readers and gas
About card readers and gas pumps. I use a Sunoco Card good only at their own places.
They and my regular CC company e-mail me the minute something is added to my cards.
PS: I guess my ad blocker is forcing replies into being new messages instead of replies?