Sunday, January 23, 2011

Hackers was steal $150.000 with malicious app

at 7:38 PM Posted by Technologi News 1 comments
Now small businesses have a neww cam to worry about job application criminal who wants to hack into bank account online.

The U.S. Federal Bureau of Investigation issued a warning Wednesday about a new twist on a technique of long-term computer fraud, fraud known as the Automated Clearing House.

With ACH fraud, criminals install malicious software on computers in a small business' and use it to access the bank account on-line society. They created the phony transfer of funds, adding fake employees or beneficiaries, and then move the money offshore.

Fraudsters can move hundreds of thousands of dollars within hours using this technique. Often target small businesses that use regional banks or credit unions, which often lack the resources to identify and stop fraudulent transfers.

In this latest twist on the scam, criminals are apparently looking for companies who are taking online and then sending malicious software that are doctored to look like job applications.

An unnamed U.S. company recently lost $ 150,000 in this way, according to the FBI Internet Crime Complaint Center. "The malware has been incorporated in an e-mail response to an advertisement of the business put up a web site of employment," the FBI said in a press release. The malware, a variant of the trojan Bredolab ", allowed the attacker to obtain online banking credentials of the person who is authorized to conduct financial transactions within the company."

This scam has been around for at least six months, depending on the manufacturer SonicWALL security, has recommended that the Trojans last July.

The typo-filled Trojan SonicWall seen looked like a Word document and say, "Hello, I understand that you have a job available are quite intrested in it so I send you my resume, waiting for your answer! Thanks ... ".

In the case reported by the FBI, the Trojan has been used to transfer money to Ukraine and two other bank accounts in the United States.

"The FBI recommends that potential employers remain vigilant in opening the e-mail addresses of the employees perspective," the FBI said.

There are few things that consumers and small businesses can do if you're sure to e-mail attachments. The safest method is to remove the attachment and write to the sender asking for a text-only version. Alternatively, they can open the document in Google's Gmail to see if it is legitimate.

We must worry about that...!!!!
Posted under :

1 comments:

Post a Comment

Subscribe to: Post Comments (Atom)