UPDATED 10:21 EDT / JUNE 27 2012

NEWS

75 Million Dollar Cyber Bank Robbery

Breaking this morning from Sky News is a report that a massive cyber fraud scheme has been uncovered on over 60 banking institutions around the world.  The scheme has pilfered an estimated 75 million dollars from a number of high balance accounts from the various institutions.  Automated software has infiltrated server systems and utilized a system of mule accounts in staged events.   Apparently the system was enabled by “an insider level of understanding” and was able to avert detection methods built in place for suspicious actions.  The attack is suspected to be infiltrating North and South American banking institutions.

The study by McAfee and Guardian Analytics traces many of the source servers used in the attack back to Russia.  These attacks are reportedly still continuing today.   As the video states, it is being reported as the biggest cyber bank robbery in history.   Having started in Italy, it has spread throughout European institutions, targeting corporate bank accounts in a sophisticated and reportedly ongoing operation.  Loading hacker tools known as Zeus and SpyEye, the attack has been utilizing servers worldwide, switching its points of attack to avoid detection.  Much of the discovery of this scheme has been uncovered through forensic evidence from log files, which is telling of the ongoing sophistication and difficulty of detection of the ongoing attacks.

The report comes on the heels of a warning from the head of MI5 on the “astonishing” amount of cyber espionage, particularly from nation states.   In that warning, there was reference to threats to the financial sector.

The attack raises questions of practice in security.  Beyond technical means, there are a number of significant practice elements that factor in to the present and future of securing financial institutions.  Managing administrative access is a factor that is constantly in focus.  That means tiered access to systems, accounts, design and so on.  It also encompasses lifecycle management of accounts and passwords in addition to ongoing auditing and technical control of access.

 


A message from John Furrier, co-founder of SiliconANGLE:

Your vote of support is important to us and it helps us keep the content FREE.

One click below supports our mission to provide free, deep, and relevant content.  

Join our community on YouTube

Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner to the industry. You guys really are a part of our events and we really appreciate you coming and I know people appreciate the content you create as well” – Andy Jassy

THANK YOU