Η IBM αποκάλυψε ένα πολύ εξελιγμένο σύστημα απάτης που διευθύνεται από μια συμμορία εγκληματιών της Ανατολικής Ευρώπης. Αυτό που κάνει πολύ ιδιαίτερη τη συγκεκριμένη απάτη είναι ότι χρησιμοποιεί ένα συνδυασμό phishing, malware αλλά και τηλεφωνημάτων, καταφέρνοντας με αυτό τον τρόπο να “συλλέξει” περισσότερα από 1 εκατομμύριο δολάρια από μεγάλες και μεσαίες επιχειρήσεις των ΗΠΑ. Το σύστημα, το οποίο οι ερευνητές ασφαλείας της IBM ονόμασαν Dyre Wolf, είναι μικρό σε σύγκριση με τα πιο recently widespread electronic fraud schemes, but represents a new level of sophistication.
According to IBM, (PDF) since last year, attackers have targeted individuals working in businesses by sending spam emails containing malicious attachments to distribute a variant of malicious Dyre software to as many computers as possible.
When a computer is infected with malicious software, nothing seems to change until the user tries to connect to a bank's website. Immediately malware creates a false page informing the user that the bank's website has problems and should call a specific number.
If users call this number, they will be answered by the malicious user (sic), who already knows which bank the victim went to connect to. So many users think that they are talking to the Bank. The sequel can be imagined. The malicious user requests the victim's bank details over the phone, and as soon as he obtains them, his account is emptied…
Using a phone service with a response from hackers themselves makes this fraud unique, according to Caleb Barlow, vice president of IBM Security.
"What is very different in this case is that we saw the attackers use a set of social engineering techniques that I think is unprecedented," Barlow said. "The focus on remittances of large sums of money caught our attention."
Meanwhile the fraudsters once the money transfer is complete, they start moving it quickly from bank to bank to avoid detection. In one case, IBM said, the gang hit the company with a attack denial of service (DDoS) attacks - effectively reducing their capabilities on the Web - and so the theft wasn't discovered until much later.
Η IBM has not provided any detail on which companies have been the victims of fraud.
[signoff icon = ”lock”]Her security unit International Business Machines Corp συνιστά στις εταιρείες να βεβαιωθούν ότι οι εργαζόμενοι τους εκπαιδεύονται στην αναγνώριση attacks phishing but also educate their customers to never, ever give their banking credentials to anyone.[/ signoff]