Courtesy [Infowarrior] – Richard Forno
Sat, 01 Nov 2008 08:08:47 -0700
A single cyber crime group has stolen more than a half million bank, credit and debit card accounts over the past two-and-a-half years using one of the most advanced strains of computer spyware in existence, according to research to be published today. The discovery is among the largest stolen data caches ever recovered.
Researchers at RSA’s FraudAction Research Lab unearthed the massive trove of purloined data while tracking the activities of a family of spyware known as the “Sinowal” Trojan, designed to steal data from Microsoft Windows PCs.
RSA investigators found more than 270,000 online banking account credentials, as well as roughly 240,000 credit and debit account numbers and associated personal information on Web servers the Sinowal authors were using to set up their attacks. The company says the cache was the bounty collected from computers infected with Sinowal going back to February 2006.
“Almost three years is a very, very long time for just one online gang to maintain the lifecycle and operations in order to utilize just one Trojan,” said Sean Brady, manager of identity protection for RSA, the security division of EMC. “Only rarely do we come across crimeware that has been continually stealing and collecting personal information and payment card data, and compromising bank accounts as far back as 2006.”
To subscribe OSF’s Data Loss Mail List, send a mail to:
Posted by Lyger