We reported on this previously:
http://vulnerabledisclosures.blogspot.com/2014/10/disclosure-vulnerable-disclosures.html
We can tell you that these actors are utilizing IRC channels to coordinate these attacks and that they create random rooms with long strings in the name and change the name frequently.
---
Malware-wielding attackers have compromised 800,000 banking
credentials, predominantly from the five largest U.S. financial services
firms, a new study warns. But they may also be preparing to launch APT
attacks against financial institutions.
The Russian-speaking attackers stole the credentials via "Qbot" malware that they installed on about 500,000 PCs, according to research published by cloud-based security firm Proofpoint.
To date, it's unclear how many of
those stolen credentials have been used to commit fraud. But Proofpoint
is warning consumers and financial institutions that 59 percent of the
stolen credentials are tied to accounts at the five largest U.S.
financial services firms: JPMorgan Chase, Bank of America, Citigroup,
Wells Fargo and Bank of New York Mellon. About half of the infected PCs
that comprise the botnet run Windows XP.
SOURCE: http://www.bankinfosecurity.com/hackers-grab-800000-banking-credentials-a-7416
REFERENCE: http://www.bankinfosecurity.com/
The purpose of this page is to provide awareness to individuals and organizations that are leaking information and the information of their customers. The entities listed on this site are verified to be leaking personal information sometimes without the company even being aware. SLC Security is now owned and operated by Jigsaw Security Enterprise. We are currently in process and as such this blog will eventually be taken offline and merged with Jigsaw Security resources.
No comments:
Post a Comment