John Leyden reports: A banking Trojan attack has led to the fraudulent withdrawal of more than $1m from online banking accounts maintained with a UK bank since the start of July, according to security researchers. Web-based malware based on the infamous Zeus cybercrime toolkit is being used to steal money via the unnamed bank’s online…
Category: Financial Sector
Vermont reports uncover three more breaches
From breach reports to Vermont, here are three more breaches I didn’t know about previously: Cathedral Square notified residents that their only payment processing system had been compromised, resulting in access to the residents’ names, bank account numbers, and routing numbers if they paid their rent electronically. Residents do not seem to have been offered…
Maryland reports reveal yet more breaches
Thanks to the Maryland Attorney General’s Office, I just received copies of the 22 breach reports they received in January of this year. They’ll be sending me the rest of the reports received this year in the very near future. Looking through what they sent me, I see that we knew about the majority of…
RBS WorldPay hacker extradicted to Atlanta
The U.S. Attorney’s Office for Northern Georgia issued a press release today announcing the extradition of Sergei Tsurikov, one of the alleged leaders of the Eastern European cybercrime group that hacked into RBS WorldPay in Atlanta in 2008. Tsurikov had been indicted in November 2009 on federal charges of conspiracy to commit wire fraud, wire…
Maine breach reports obtained by DataBreaches.net
To follow up on my curiosity about what kind of year 2010 is turning out to be, I decided to use a primary source. Thanks to the cooperation of officials in Maine who responded promptly to my requests under Freedom of Information, I was able to obtain data on all breaches reported to them for…
Hackers find a new target in payroll processing
Oh ho…. this explains the confusion created by a recent breach report by Regeneron to the New Hampshire Attorney General’s Office. I had been wondering why Regeneron was claiming that they had first found out about a breach involving Ceridian in June when Ceridian had claimed back in February that everyone was notified. I had…