Tag: Kaspersky Labs

Banks hit by cyber crooks

Posted on February 16, 2015 by - News

wargames-hackerRespected anti virus company Kaspersky Labs believes that crooks have targeted banks and that could lead to as much as one billion dollars of losses.

Kaspersky thinks the attacks were made using so-called phishing scams to access up to 100 banks’ networks and so gained access to cash machines and drew out the money.

But the attacks are confined mostly to Russia, with some attacks made on banks in Ukraine and China.

The company worked with Interpol on an investigation and it claims that the attack is one of the most significant security breaches yet.

The amount is difficult to pin down and it’s believed the billion dollar figure may have been overstated.

The crooks involved in the scam are believed to still be active but there’s no indication on where they’re based or how they gained access to ATMs.

Infected ATMs discovered

Posted on October 7, 2014 by - News

pesetaMalware illegally installed in automatic teller machines (ATMs) is costing millions of dollars with INTERPOL involved in a fight to stem the thefts.

Kaspersky Labs said the Tyupkin malware works when crooks have physical access to the ATMs and use a bootable CD to install it.  The infected ATM runs on an infinite loop waiting for a command and runs only on specific times on Sunday and Monday nights.  Then the crooks strike, taking cash from infected machines without needing to use credit cards.

Kaspersky said the malware – Backdoor.MSIL.Tyupkin – has been detected on ATMs in Europe, Latin America and Asia.

The anti-virus company said that banks need to look at the physical security of ATMs and invest in good quality security systems.

They also need to replace master keys and locks on the top of ATMs and get rid of the default settings.  An alarm should also be installed because Kaspersky discovered the gangsters only infected ATMs with no security alarm.  The default BIOS passwords should be changed and the ATMs need to have up to date antivirus software installed.