Phishers’ Gang Attacks Businesses and Rips off 15m Card Numbers

Through one targeted phishing assault that unleashed malware, FIN7 -name of a group- hijacked 3,600 businesses via online operation and ripped off 15m credit card details. Those enterprises which were affected in the assault are Sonic, Arby's, Chipotle, Jason's Deli and Red Robin - all branded companies in USA.

Three persons associated in the current phishing scam are in police's custody. They're all Ukrainians and respectively named as Fedir Hladyr, Andrii Kolpakov and Dymtro Fedorov. While 33-yr-old Hladyr is already arrested, 33-yr-old Kolpakov and 44-yr-old Fedorov are waiting to be extradited from Spain and Poland separately.

Assistant Attorney General Brian Benczkowski representing the Criminal Division of Department of Justice stated about the 3 persons from Ukraine that they were indicted for their alleged membership in one prolific hacking gang which attacked U.S enterprises along with citizens for ultimate theft of precious consumer data, in particular the consumers' credit card details that were subsequently traded off across the darknet.

Moreover according to Annette Hayes U.S Attorney, the office though doesn't claim having thwarted the gang altogether, it however, managed making certain considerable impact.

Hladyr, who's detained in Seattle, apparently worked as the gang's systems administrator. He'll be prosecuted on 22nd October. According to his lawyer, it can't immediately be said if any plea deal can be initiated.

Authorities stated that Kolpakov along with Fedorov supervised hackers carrying out the scam. According to them, the gang executed its activities in the name of Combi Security certain front company for remaining disguised as legitimate, while hired hackers for its criminal ventures.

The DOJ stated that FIN7 having numerous members executed plentiful cyber-attacks against a large number of enterprises running inside USA as well as abroad.

FIN7 craftily prepared e-mails for different enterprises' employees in a way to look genuine to them. If any e-mail recipient opened the included attachment and activated the file, the infamous Carbanak info-stealing malware would get executed along with some more tools that together would gain admission into the enterprise's client payment card information and eventually steal the same.

Morphisec a cyber-security company has depicted FIN7 as a major threat actor syndicate of the present time.

» SPAMfighter News - 8/13/2018