04:52 PM

Who Is Hacking U.S. Banks? 8 Facts

Hackers have labeled the bank website disruptions as grassroots-level reprisal for an anti-Islamic film. But is the Iranian government really backing the attacks?
8 of 8

Supposed Muslim hacktivists aren't the only groups apparently gunning for U.S. financial institutions. Researchers at RSA recently warned of underground chatter they'd unearthed, suggesting that up to 100 botmasters were set to pool their resources--a few each, at a time--to launch Trojan applications that steal people's online banking credentials. The ultimate goal appears to be online bank log-in details for small and midsize businesses, allowing attackers to make fraudulent wire transfers.

After that warning, researchers at Trend Micro identified a list of 26 banks that will apparently be targeted.

The news of the forthcoming wire-fraud-transfer attack campaign follows the recent release of a joint alert by the FBI, Financial Services Information Sharing and Analysis Center, and the Internet Crime Complaint Center, warning of attacks that use "spam and phishing emails, keystroke loggers, and remote access trojans (RATs)," as well as variants of the Zeus financial malware, to target employees at financial institutions. According to authorities, attackers have successfully stolen between $400,000 and $900,000--at a time--by using stolen credentials to initiate wire transfers into overseas accounts. A similar heist was conducted earlier this month against the town of Burlington, Wash. Attackers successfully stole over $400,000 from the town's Bank of America account.


Iran Denies Hacking American Banks, Censors Google

PNC Bank Hit By Crowdsourced Hacktivist Attacks

Bank Site Attacks Trigger Ongoing Outages, Customer Anger

Bank Hacks: 7 Misunderstood Facts

Hackers Launch New Wave Of U.S. Bank Attacks

U.S. Bank Hacks Expand; Regions Financial Hit

Bank Hacks: Iran Blame Game Intensifies

DOD: Hackers Breached U.S. Critical Infrastructure Control Systems

8 of 8
Comment  | 
Print  | 
More Insights
Newest First  |  Oldest First  |  Threaded View
Leo Regulus
Leo Regulus,
User Rank: Apprentice
10/24/2012 | 4:52:32 PM
re: Who Is Hacking U.S. Banks? 8 Facts
Very disappointed in Editor's choice of article format. This has been extensively discussed in the past.
Register for Dark Reading Newsletters
White Papers
Current Issue
Dark Reading Tech Digest September 7, 2015
Some security flaws go beyond simple app vulnerabilities. Have you checked for these?
Flash Poll
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
Published: 2015-10-12
vpxd in VMware vCenter Server 5.0 before u3e, 5.1 before u3, and 5.5 before u2 allows remote attackers to cause a denial of service via a long heartbeat message.

Published: 2015-10-12
The JMX RMI service in VMware vCenter Server 5.0 before u3e, 5.1 before u3b, 5.5 before u3, and 6.0 before u1 does not restrict registration of MBeans, which allows remote attackers to execute arbitrary code via the RMI protocol.

Published: 2015-10-12
Cisco Unified Computing System (UCS) B Blade Server Software 2.2.x before 2.2.6 allows local users to cause a denial of service (host OS or BMC hang) by sending crafted packets over the Inter-IC (I2C) bus, aka Bug ID CSCuq77241.

Published: 2015-10-12
The process-management implementation in Cisco TelePresence Video Communication Server (VCS) Expressway X8.5.2 allows local users to gain privileges by terminating a supervised process and then triggering the restart of a process by the root account, aka Bug ID CSCuv12272.

Published: 2015-10-12
HP 3PAR Service Processor SP 4.2.0.GA-29 (GA) SPOCC, SP 4.3.0.GA-17 (GA) SPOCC, and SP 4.3.0-GA-24 (MU1) SPOCC allows remote authenticated users to obtain sensitive information via unspecified vectors.

Dark Reading Radio
Archived Dark Reading Radio
What can the information security industry do to solve the IoT security problem? Learn more and join the conversation on the next episode of Dark Reading Radio.