|
|
|
Hackers Charged in RBS WorldPay Breach
By: Brian Prince
2009-11-10
Article Rating:  / 5
There are 2 user comments on this Network Security & Hardware story.
Federal prosecutors announced indictments against eight people in connection with the theft of more than $9 million from ATMs around the world.A
U.S.
grand
jury has indicted eight people in connection with the theft of more than $9
million from over 2,100 ATMs in at least 280 cities around the world.
The indictment accuses
Viktor Pleshchuk, 28, of
St. Petersburg, Russia;
Sergei Tsurikov, 25, of
Tallinn,
Estonia; Oleg Covelin, 28, of
Chisinau,
Moldova; and an unidentified individual of a
variety of conspiracy and fraud charges. In addition, Igor Grudijev, 31, Ronald
Tsoi, 31, Evelin Tsoi, 20, and Mihhail Jevgenov, 33, all of
Tallinn, Estonia, were indicted on charges of
access device fraud.
According to authorities,
the group broke into a computer system at RBS WorldPay, the payment-processing
division of Royal Bank of Scotland Group. Once inside, the cyber-thieves
reputedly cloned prepaid
ATM cards and used them to swipe the loot last November.
This investigation has
broken the back of one of the most sophisticated
computer hacking rings in the world, said acting United States Attorney
Sally Quillian Yates in a statement. This success would not have been possible
without the efforts of the victim, and unprecedented cooperation from various
law enforcement agencies worldwide.
According to the
indictment, the group compromised the data encryption that was used by RBS
WorldPay to protect customer data on payroll debit cards. Once the encryption
on the card processing system was broken, some of the defendants allegedly
raised the account limits on compromised accounts and gave 44 counterfeit
payroll debit cards to a network of cashers to steal the $9 million. The
funds were taken from ATMs across the world, including the United States, Russia, Ukraine, Estonia, Italy, Hong Kong, Japan and Canada.
Underscoring the
coordination of the attack, the $9 million was stolen in less than 12
hours. According to the feds, the hackers used the cashers to transmit the bulk
of the money back to the group via WebMoney accounts and
Western Union. The cashers were allowed
to keep 30 to 50 percent of the stolen
funds.
Throughout the duration of
the theft, the masterminds monitored the ATM withdrawals in real time from
within the computer systems of RBS WorldPay, authorities said. Once the
withdrawals were completed, the group tried to cover their tracks on the RBS
WorldPay network by destroying and attempting to destroy data.
The indictment seeks
forfeiture of more than $9.4 million of proceeds of the crimes from the
defendants.
|
|
�������x}ks㶲*�Q3皢HY�#Mɖ<�4Lj� I)�˭����_zP�3Lb["�����Iȹ�=&�ǘYN�cSݣ&w$wv~]
4I-�
ˑ�ԫ
9S]M�HwW3fcө�P/W�?`��W�᳑(,�Q � tjGt0]2x�;s:&ves/cߨ�:`&`1\l8lT@!j��:a�?xh-'@I�b�#Ѻ�8!P(�ս'c� [t�V�9v W*UN�8Spycf_��B%h�!G�Qus_�ad�wy4*;U;a=�7SѠ*v�25v+�6^�;�r9Fȹ�3oGnh�=�T��D=TV�w2*5&;1ҡc�)�u���`r�*jH�tGL#fK>�`:x =3~4�dЌnQ��O! d0F#�RbŃ�#Ϟ~b>4��:a;6ge~�/7Poƞ3C27 p�&��TmBO|l
͟P�Au�ӱaGG�P5#o83he7y�n�JtV�be|P?8ߋWwm8weڳ{�UugF?;/�U-��:e�0>
n04�p;\Rr��NEs<_>s�i^`dm#1��}�"@D%\.�I"0i�'6ttڽ~�H}AFI?j/jy%rPT�Z, T$0L"�J�1zĢ(�$vߔL-~k~:EX6&�R*C�A/],?#[Srq}ڼ~n_4=rڽ"IřyN0p3�Z?�z��'^=z����l
M��u4}GVK�{S{r"�t|>!9I'7ɯg9�0io,Yn]H.ż|�|Y|ěy#0ri���4(�>
L9��X@.@ש#04ۯ-iV988ୱJ+҄j�
�)B��A`�̼N�R�$9�Vˡ�8ȟ恒4�R\� 9lb��)6�K .7jaOM2X�U��>I,A[!fT]OKB�""xV3���E9ԑ>BzBp4@*\��lmV3-mhZ`1 �5f:%ޥ6�q�0y��A7E�ȣ��=�]Pv9�B�
B�!\��0 H�� P��;�.VJI+Tbz"�Ҧ�B�I�(}i�X�S,ЂW-Kᗄtfh(L=?뺾l1!��G�,D`v9r,L��.��h)lb
Z.iȨP�c�0�=cGV*�RP� =�rA�5�Sq3ߴA吶=4�L�f�3W OH�Jzaͽ:5� �-Ic*�yN5&�玈r��?n�zAU E�q,zo"Y3`kSS���ٌI89S�@�0:A̞P��,[Xp�n,{v?8�Gs��VZ)oj�I
�R >5N+�} 8C��_gM,�����cY!�/�:�QH OjBniHSy2$,B�~)pd�r�Kw�^`�"3hqJNbЙB#@)z�Q�=YUo)�<4^Օ�$/gsP*퉟�:R�J'~��7�Bj^¼ye<4�VX`9HM^>�LN��ЃX`�iw�h�Mπ|f:��g3?�RlC48c$4)̕6A�XzTJUQz
�Ä끈�_E3�c�a�{�62tJ.,�aꚚ=/,*{5eWhHs7s4FUE8@o��ʱ��{Ltzh<
VȴO*4wҵ�J 1�5�_OR(1��csMD@kn�V2�&G-cY]6fuEm��$ci.:Ĕ�,��~�ɯ©9r6|��*J�0FBċVr�lQؼ;(k�V�4:E�80��e:Cb+���[T*�PzۻX(�Dq"
֚p성 �.}"}-��0$4`n�̂_HE"}�[+p�� y
}@"��L0�:�K�r�2b,�
U)
�jIMy�-"`/?��Œb�4XQH =<{e|h3ʋ<2�Y����㙤Z�J�o=:Բ*GJRA�gD+ϏxW�E�"ITA��_���}Oi�/�fo�ܮ[C.�~g^Ol^�L�av"O`��%OL_w�2H}0x!/ǨOMqѡ,u�`��UQl�~4�V87f=�<�@?
v�#lhCx�R�&�`�j@$�
p�LU}2�(2ٝ'(R~-p;>�iR�I�4�YH]Ia��������g~Kӥ��
{ݮ�#f5>L�k}��\S
jQa/YY�X^�:������iw3
9�&
~rqߎ�XA�m�k+sD
�ü�
�|30Jјlj?o\,Qm(}�gn�LZ[tɃoᄻ,OQý�ojv��QB<�犲�G�3��о�
NM(�R!ڃ[Jp q�Ն�a��+ZJ�e0"30�҃z5c�yU�LٔY��*�+tݿx��ji�==cMrW�X mS3ѹdNcl �E?9dN@u3 �U�S4
�NP5_p4�h�>L��թ�4D6�3����q�Iv=h �1_7A�$|�7BP.��R
R=cx�864>ukǍ�i
lmKQ
�z�F<�H�3$�C�j]K>a51t�\ߘ砚I0['��ML
�UXk-[J�p9҂�u^PUGzWқM �@#�|rǞfP�H|X%W*�iZ<$c��eq�dZT5��UJ
B���6jlm��
��Lqab;w?ͅg7ckX> �B�5�5)��Au%hnrGSq�{a\/;Cn/�$hO@^�1M�u0@M\&tƝ7.V �y*1�`2N$[
knI,G� �a
T=Cf@UI-VR}����=2@iatA�*�}/*\D�IvSSS]����8A|��h��^%5sgC U`JR�#0�阆�c��( R#GY\�'
WBxP�(YP���X9H(PJ Yr>۷mpH3T�lCXp|
^?K�{e$ $"z��R=.=2��a7ZXf�W�����\~ۅ^ۣ߫�)����l�n
|K�~��Zg�^��=�bE2�};?RX�!)l{їN�C<�d^}^^�A1�VY? 0WKο��0�hqoR�,Z>~~hJNCj�gyn:dB*;�v�B�,
H
oHzqߵ!s'^>l/>HW�6y��p0\^�<�!9n�8ՇI{��EKJ:^�9"�!5�.�Yz��G�]99o5³M1+&05hȂ<)��!麫?`z�+��B_�KٺĂ!sQל$�"j*\N3$nP�e]?Z9W�w�~em�`!��oH2<(_�a�
#��{ r
P)'$�-�v%:̝�cϻA��BLR`2"籔(BR.HHO�5xlt�(�6�/>#FG�E'[+t{)[N7c+d$�GD{_q-��'=?EU.[i'5۟I|�
Nv��9oq_,#pp>a�.A-H7ܺ�J>$�0�QJh"g�8�AE;�?m[=�`��Rr���(�=Lf(lOآ
]�kĖS9))�Ҥ4
AgJȄbye%)a35R!MLEY�OE/�$$f;�+B:zs �g�iMN6mn3gj;�n�_"�#�O&8v�\$0G �q�o4CE HY�)o8-y�B!}6PWR4jwaW!����|@�s`�-C�D!aFCrW��êAEbݩmb�izt�<�h;n�;
�GS
��e�Z�nOa7pϲl^ta}�`�|;�F�G5�];�@Ƹ D5}B�A�=֦�ǂ� cf
��~]��ު宄�MZ%צ1A�x�Ggay8F<.Əg%��
g6�14'~4.@��W�{�O$��V��=2GoQw�P]Yz$ACvk~愜71n;z[o|Of0�7+�tNin[nơ8�5��J}~l'It:�D�y[a[{C�Ȋ̙S.zr!���FpZx>2��M�3}�%3���wD/LZpNh3��P���lr$��p^^�[!�c|NdG�+Hc�N4�z�^dŁƗs2A�8GJ݄G�;GܧyH/&�W�{*ħՄ{c;w�5TkP�&oVo[B�7"<�{Ì;`£yw, i9� B$�DXc*GH7�+#ǡk��^ސߋ&1��6i*�WM_!hJ|�z2Vh[D�ކlްS|R�"���Px`FpLԃzx��1\kNa
7��9@��oImvn9WG��8�ac�Scr9�z��2nv7$Kb�93~˓�~eF4�]���PH���ak[SCU�^(�_p?��9RY䑠|
� j×1լ�[TV[{stm*̱1j ԧ&�fұ�p�{�FBE"X�F�!�"�7AH �F)H";,��A#T^M 4� }�:HbQG��Qw覃;4hWT\�`=9uYyᣍ ��m��DqA%��wg�~�Ap�V�&g�Сr/!EAc9�X�|f:~7I&o1o�^ȣA�i}]�d�
e��0ɤl
bpGPH�E������P�hmj;aN}teƏJZTgZ/g岚>Ц �� Tt��T�ώ(tK�Է|y��#�!m!.W�mw�R�99Ѱ+lx�ċ_�溇K"�Yw�5!p���A/cЃ#ķjf7t�(1�x^q���_{�mXo��k3>=n{{�7i�ψb�Wݰ:ư<�/\;4o}Aph�zl^�B�i��f%e։�i'V(��)��5sKi(Yf0q7zJ�ǒc>8\@O<�cн9:u]{�{$5d�_M�,9$*�>dS�ǝ�
W_^>�]ǝ>��'�(�sqe��"96i>N]IL�a�
CZ(�M#r�%1�w {�#ߌ=gf�?�Ñ2.�O��FXx-��I#V��Z�"�'"��7�"�wyap�D]dbɠ:���7�/͛I~�oY�C�s�mΏ95�1E�h�R>&sjxZ)�(9�>%sRkq��N�ߥt�c���[cě"UA2�AK5�)E7R�WBhR��fx9�Oku��mN��!Vi
�?L8�Vi
2ֵn&#m']қ≠DU(,v}~(:C[T�vXś�K].8pma�#ؕ�Z��Sp-c|ri?�*ܲGs%E"#܆7W2orwÛܡ<�Ɣ�tؑZ}�r\P�צ
�^�Y�@ɕJ1Bcz`cBs.xG�F�^3RI/V˩4z
qFp��=X2@�sJ�&:,�Vbi+�1
M& =�F�v1a^S@'���cUl4XK襍ҵτ8�I D>� �^Rb$�WV mLr:�ҤS�f;6�n!�pKpf|{3lS,D�@$=ꦆj3?b)_7b~u�x�+s�Y �x#jO&ta�@�vZ�3ZNph�u
!�0x�⩌)Z�04�Lj�x�b*1bF�a?˪M;InP~z�*ڟO�dh^fs B{Z}{�kКXw��t BJ fZ,ϒE�h���17͛߄QT1W��MW)jm�9���_
�6f^ZgZQ1G)L>xAn��2K= _-�k3`1lH*�Qu!ݰ�,VI m{7�R[�[y슍\��abyb�p�[GF\{~uC��@�3Cym"��L�<�ySM\���"UÙA,/�yP$�EuE)
2[_wMy�'�к�lU=�
|9[AG)��9Ĕ#M!z^k]��
E̘n_d�Ð�3�{�:ŰD c�
4Q-�?�cMN[fE<
,i
P��m�!�Y9�oY�,a48`�&�X�E_dzw?,��/ jw�ܕŭ�x�
�Ԅؚ%~�6t0V)�t#ߛ�j�3,ȏKlݜ�(�8�&�s�B4_ �D�Ÿb)�.LO#�xW�}���=<�RXX_1ԻPU*R$4�|:(�Έ&�+J)R]�{�xWyF7e,-Hs=Mȕ@�9Z��Ȉ�p�/Y40um�>�\�;�嘫7./Ͽ�iӫV>�Nڗv_M%}�'\MG٪;旓E}OM̢·_smiP0mw�%EbvʌTN{c.ͅdUh,Y3U94dG�1}4�y�R�~�Sf�}Y�Q��J/ab_�R1o4W^OV\k)h?gg:^��Ȑ:|Wh
>r:X)`�ZQc p��!>E['}ҽhIJ/6�3?Bnjߠ+(Z]~�JmdwQ_]��4[�'P~�s��� ?.?kgfnfC�CL"�^Q�ʿ.?��A;�Ӂw2�,N�~;N�~:0N;@��}v2�y"c�sF�e�QށNF9E^�\d�EuwAt3O�K7C\�}\f%�U�``��]] S�}}Y0��k(*�Πkh:k�K:ICP%.Ni��gr�z)A^d_�~*%iF�gȳr�3�Vn�a�{r1Wgˀ^��_ [L+ťW�
7YKxUy%kkJ1nv�d�b�a/��%KP0e^��#(�78%Y}M#�h��toĶ.�~GYp�&}:=Wv�l+Jy._[nNJ>S\�ȜH8V0xu�緶xvY^]Z��T_�;Yo�)P. \-'OxVfw�|�4;U.TlN>]_�Һh�.��Z=֊쓥=�5}�MoNDV�N)pB ��^a��ɠ1z�I]�]�
;wE-=�SR�>}58]W�n8ڜ�8�wƎ3��P3�eb�IP*RJRsG?'Wd6=#"2t,A�UV
rJ.'�Ai�0�X\����^9Q(Fuo*%K0fy�=q̐g�a��1V�J�!'\B�x�mf[B
�_||m\fP��ռD<�'U~ m<�@��V@,�(�s0��Tߙ_F�lO��B/gCV���5?0}F�z��6.eа!,�sv[z0�
�|N�3Kd>DBa�D�˪U̫au
jϗ53�n%cD�$Q7/�ɱFΑyCR��XSGйGӟ�}Q!2eӡ5KS&��"�n#Q�SLZ�w�0ԶG�p71��,��7kR0Aܧn+xKMtocL I��U?Nj6�틷@$�I5;~�ɱdL(�1�k77=�{!fI�3)D$�&��~6'IK-}x��=
�9$Id�`+.ȉ�{1L9sS)�V,!!1I�M:Z�sJ�D!]r�&р�Zx��DN焽�H�aCmKF2}jQwh}vڗX3��ܲ���$[�W1^{�3
E3$ư�z<
[�)1P
YY/j56p�tѷkdIM�&Ah&.5��b8�gCJ�Ҥr\鱽�$Vr.Q
=�@U7�VAxߓԲx*�D?��T\{ɓ�:W?m��?'6}F5+H'�"@c�i xq��Zձ]w
� 7�g}����cHPVFϗݜ����OXo|
8l�O.�h�6�A|�eK��z|w�zQ�Z`K��쒧�~���0qGĦ2C|R2MEpv�Rc���dLwf95�灄E�x
kY�oc3gx�[-]
D
�p�e/yl+K8~m=fu�-U�rcdK�{f�:eϐ�^F�l+�B���` GY�e`�Kr
k-E6
lI12��e�PCik9Z��0DqU�
�Xâ�WqTR:!�;
/D?8-�ciL ��;fcXJ
�XF!Ƨ7�'T�S*�4.>ϭ?\:?p�Ϣy9q�g#ࠌWt�.^3 �{e��7�5w�HR#z.i|Ԃ!�gnh�]1fnBM��.&DW6K�5�4ƘbYy&��LV�9�2lv*�
X>!ˣŬ"&D0Ȯ��'R:tsh;h۟X3T*D%L0M���Är�"5poq-ye��ӘH
�pK�g8
g!0X^�XpTT��/D4;NB}aE�tiSwbohi
/=n|ptє��EKB^5[i��B"E�wh6���T r�̳��G`b�hP7]Ө)jY$IL#[ov[�b$-�U.AaZRw�ߺ"f/F ۰M�*
i2�9?R{) 1^Y)ҦG(�5c�>tgLt�)�2)v}ml-c6�C-;�s)!��
|
Network Security & Hardware 
