Shop Lost $200,000 from Online Banking Scam
In February 2010, cybercriminals stole $200,000 from an auto body shop in Ohio (USA), Clarke Collision Center, in a brazen robbery done online. Hackers used malware for unauthentic access of bank account.
On February 23, 2010, owner of a local security firm Kintz Tech, Craig Kintz, responded to the incident and stated that an employee of the duped company came across some strange activities going on, as reported by Krebson Security on March 11, 2010.
When she accessed the site of Fifth Third Bank and entered her username, password and output from security token, she was taken to a page that claimed that the bank's website was unavailable for the time being. The page she was directed to even include a 1-800 number reportedly for the customer service line of the bank.
After calling on the given number and finding that the number is out of service, the employee became doubtful.
Afterwards, the employee called the authentic customer service number of the bank to report about the dubious incident. She was told that there had been a huge amount of wires and money transfers from the company's accounts to people in the US and abroad. Within few minutes, the company suffered a loss of $200,000.
Kintz said that she informed the bank at 9 in the morning that day. By 11:30 in the morning, the bank blocked all the accounts only to see that all the accounts hade already been robbed.
After some time, it was discovered that the Clarke Collision' computer has been hit by a malware. The malware enabled the hackers to use the online details of the bank account of that shop while showing a bogus error page on its system.
Fortunately, Fifth Third Bank succeeded in put a halt on pending transfers and returned the shop, the remaining stolen amount. But, the bank claims that several other businesses were also attacked that day.
Security experts said that small business assumes great responsibility when banking online as banks are not lawfully obliged to compensate losses suffered because of the fake activity. Therefore, business should become more careful in the matters related to IT and should regularly update the antivirus solutions and operating systems.
Related article: SAP Admits the Charges of Downloading Oracle’s Data
» SPAMfighter News - 27-03-2010