Saturday, May 31, 2008

International cooperation busts cyber-crime ring



In a pair of related cases, a total of 38 people with links to global organized crime—mostly working out of Romania and the U.S., but also operating in Pakistan, Portugal, and Canada—were indicted for engineering a decidedly 21st century cyber-based scheme. (From the FBI Website.)

By using the fairly routine online crime of "phishing", the online scam also used a clever offline payoff, and ultimately swindling thousands of people and hundreds of financial institutions out of millions before being shut down.

  • Phraudsters working primarily out of Romania—known as the “suppliers”—went phishing and obtained thousands of credit and debit card accounts and related personal information by sending out masses of spam.
  • These suppliers then sent their ill-gotten financial data to their partners in the U.S.—so-called “cashiers”—through Internet chat and e-mail messages.
  • By using some sophisticated but readily available software and technologies, the cashiers manufactured their own credit, debit, and gift cards encoded with the stolen information, giving them unfettered access to large amounts of money via ATMs and point-of-sale terminals.
  • Before these cards were used, cashiers directed “runners” to test the cards by checking balances or withdrawing small amounts of money from ATMs. Then, these “cashable” cards were used on the most lucrative accounts.
  • The cashiers wired a percentage of the illegal proceeds back to the suppliers.

    (More details of the method used, the people charged, the charges and possible sentences, can be read here.)

    Folks-- were you one of the "thousands" who responded? One phish message was made to appear as if it originated from Connecticut-based People’s Bank. (In fact, the e-mail message directed victims to a computer in Minnesota that had been “hacked,” and used to host a counterfeit People’s Bank Internet site. {called "pharming"}) During the course of the investigation, it was determined that the individuals had engaged in similar phishing schemes against many other financial institutions and companies, including Citibank, Capital One, JPMorgan Chase & Co., Comerica Bank, Wells Fargo & Co., eBay and PayPal.

    Tip of the day: I don't care how "authentic" the e-mail, IM, or text message looks; don't click the link!

    Today's free link: This video quick tip on CNet TV shows you how to move your complete (including playlists and metadata) iTunes library to a new computer.

    Copyright 2007-8 © Tech Paul. All rights reserved.jaanix post to jaanix



    • Posted by at
    Labels: , , , , , ,

    No comments:

    Post a Comment

    Subscribe to: Post Comments (Atom)