UPDATED 23:00 EDT / FEBRUARY 15 2015

Kaspersky: hackers steal at least $300 million from banks using malware NEWS

Kaspersky: hackers steal at least $300 million from banks using malware

Kaspersky: hackers steal at least $300 million from banks using malwareWhen many think bank robberies they may think of balaclava-wearing crooks with shot guns terrorising bank employees, but in 2015 bank robbery is a far more subtle affair involving multi-national crime gangs hacking into bank systems using malware.

In a report to be published Monday, security firm Kaspersky details malware attacks that have stolen at least $300 million from over 100 financial institutions in 30 countries.

The majority of the targets were in Russia, but many were in Japan, the United States and Europe.

The criminals use a two-step method to infiltrate their targets: after initially tricking bank employees into installing malware (Carbanak) through spoofed email, they then spy on staff in order to mimic their behavior and prevent any telltale signs that the money they are attempting to access is being done so by people outside of the banks.

To access funds, most attacks attempted to transfer the money to an outside account, although in some cases attacks would send cash to ATMs monitored by the criminals involved.

Though, Kaspersky noted the $300 million headline figure could be at least three times higher again; the criminals were limited to transactions no higher that $10 million per attack, and some banks had been hit multiple times making it difficult to measure just how much had been stolen over time. In other cases there were many smaller transactions which may not have alerted bank systems.

With some of those small fraudulent transactions, customers in particular may have never noticed their accounts being accessed. The hackers would change the balance on an account with $1000 to $10,000, then transfer the additional $9,000 to an external bank account.

“These attacks again underline the fact that criminals will exploit any vulnerability in any system,” Sanjay Virmani, director of Interpol Digital Crime Center, told Reuters. “It also highlights the fact that no sector can consider itself immune to attack and must constantly address their security procedures.”

photo credit: Portrait of a boy wearing a mask holding a rifle via photopin (license)

A message from John Furrier, co-founder of SiliconANGLE:

Your vote of support is important to us and it helps us keep the content FREE.

One click below supports our mission to provide free, deep, and relevant content.  

Join our community on YouTube

Join the community that includes more than 15,000 #CubeAlumni experts, including Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger, and many more luminaries and experts.

“TheCUBE is an important partner to the industry. You guys really are a part of our events and we really appreciate you coming and I know people appreciate the content you create as well” – Andy Jassy

THANK YOU

Cookies

We employ the use of cookies. Find out more.