At the beginning of the year, cybercriminals cleared some 500,000 euros from the customer accounts of a European bank. The malware attack called Luuuk uses a browser Trojan with manipulated banking websites.
As security experts from Kaspersky Lab reported, cyber fraudsters in January have captured about 500,000 euros from the customer accounts of a large European bank (not mentioned) within a week. About 190 different accounts were unauthorized with amounts between 1,700 and 39,000 euros. The attack was a "man-in-the-browser attack" (MITB), which is a manipulated banking website in the victim's browser, thus providing access to the registration data for online banking
The attack took place between the 13th and 20th January of this year. As the security expert Vincente Diaz of Kaspersky Lab reported, the cybercriminals' control server was discovered on January 20, 2017, and the "concerned bank and the investigating authorities were informed immediately after the C & C server was unmasked and all hints made available". Already two days later the rear men of "Luuuk" had removed all traces.
As reported in the security blog of Kaspersky, the cyberbugs are very complex and deliberate. So the money had finally landed on an account via different intermediate stations. Also, it is not yet clear from which source the trojan of the type "Zeus" was introduced. This is why the security experts fear that the "Luuuk" criminals could strike at any time.
No comments:
Post a Comment