Cookies help us display personalized product recommendations and ensure you have great shopping experience.

By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
SmartData CollectiveSmartData Collective
  • Analytics
    AnalyticsShow More
    big data and customer service outsourcing
    How Data Analytics Improves Customer Service Outsourcing
    18 Min Read
    How a Specialized Marketing VA Improves Campaign Analytics
    How a Specialized Marketing VA Improves Campaign Analytics
    11 Min Read
    New Data Analytics Breakthroughs Give eCommerce Startups a Fighting Chance
    New Data Analytics Breakthroughs Give eCommerce Startups a Fighting Chance
    6 Min Read
    How Data Analytics Is Reshaping Patient Financing Decisions
    How Data Analytics Is Reshaping Patient Financing Decisions
    13 Min Read
    business using business intelligence
    How to Use a Competitive Intelligence Dashboard to Turn Market Data Into Smarter Marketing Decisions 
    9 Min Read
  • Big Data
  • BI
  • Exclusive
  • IT
  • Marketing
  • Software
Search
© 2008-25 SmartData Collective. All Rights Reserved.
Reading: Quick, Look Over There: DDoS Diversions Result in Millions Stolen from US Banks
Share
Notification
Font ResizerAa
SmartData CollectiveSmartData Collective
Font ResizerAa
Search
  • About
  • Help
  • Privacy
Follow US
© 2008-23 SmartData Collective. All Rights Reserved.
SmartData Collective > Uncategorized > Quick, Look Over There: DDoS Diversions Result in Millions Stolen from US Banks
Uncategorized

Quick, Look Over There: DDoS Diversions Result in Millions Stolen from US Banks

onlinetech
onlinetech
4 Min Read
Image
SHARE

ImageThe most recent hack on at least three major banks involved “low-powered” DDoS attacks targeting wire payment switch systems. A wire payment switch system manages and executes wire transfers at banks. While the story is still developing on how exactly the hackers accessed wire transfers, it is known that DDoS attacks were used to divert the attention of bank security staff in order to gain access to the system.

ImageThe most recent hack on at least three major banks involved “low-powered” DDoS attacks targeting wire payment switch systems. A wire payment switch system manages and executes wire transfers at banks. While the story is still developing on how exactly the hackers accessed wire transfers, it is known that DDoS attacks were used to divert the attention of bank security staff in order to gain access to the system.

This event presents a different type of security risk that organizations might not consider – the fact that they may have concentrated all or too much of their resources/personnel on handling attacks while neglecting security of other systems. One way to remedy this issue is to partner with an IT and hosting firm that specializes in technical security and secure hosting. Their focus and investment is in providing expert IT management and support, which frees up your organization to focus solely on your business growth.

By using DDoS attacks as their cover, the hackers somehow took over the payment switch (wire application) by using the credentials of a privileged user account. By controlling the master payment switch, hackers were able to move large amounts of money from as many accounts as they could get away with unnoticed, as reported by Gartner VP Analyst Avivah Litan. Dell SecureWorks researchers identified a crimeware kit, Dirt Jumper, that launches DDoS attacks and allow for wire and ACH (Automated Clearing House) transactions up to $2.1 million.

More Read

Designing products for single and multiplayer modes
Enterprise architect warns: don’t let mashups go the ‘Excel’ route
Think Like a Designer
May I have your views on the future of IT?
Perspectives on Gist: very useful, contributes to agility and efficiency

SCMagazine.com suggests that the hackers may have gained access to the wire payment switch with the assistance of phishing emails used to plant malware on bank computers. Phishing emails, a type of social engineering attack, may purport to be sent from a credible or trusted source, so employees of the bank are more likely to open and/or click on links within the email which can compromise their systems.

Another example of phishing emails resulting in a major hack occurred last week – Syrian hackers took down CNN, Time and the Washington Post by targeting a third-party vendor that supported all three with their ad content network. By sending employees a phishing email that appeared to be from their CEO, the hackers obtained login credentials to their systems, then planted code in articles that somehow redirected them to the Syrian Electronic Army website. Read more in Chain of Trust: Importance of Vetting Third-Party Security.

In that case, it appeared to be an act of hacktivism, or politically/socially motivated hacking. But for banks and other financial institutions, it means they’re losing a lot of money and fast. Staff training can help prevent employees from falling prey to social engineering attacks that can put their companies at serious risk, while partnering with a secure hosting company can give you extra IT security resources at lower costs than employing your own.

TAGGED:banksDDoS attacks
Share This Article
Facebook Pinterest LinkedIn
Share

Follow us on Facebook

Latest News

big data for non-QR lending in real estate
How Real Estate Investors Can Use Big Data for Non-QM Lending
Big Data Exclusive
ai video ad generation
How to Build High-Performing Ad Creatives with an AI Short Ad Video Maker?
Artificial Intelligence
big data and customer service outsourcing
How Data Analytics Improves Customer Service Outsourcing
Analytics Exclusive
The End of Unstructured Marketing: Forcing Generative AI into Strict HTML Schemas
The End of Unstructured Marketing: Forcing Generative AI into Strict HTML Schemas
Artificial Intelligence Exclusive

Stay Connected

1.2KFollowersLike
33.7KFollowersFollow
222FollowersPin

You Might also Like

prevent DDoS attacks
AnalyticsExclusivePredictive AnalyticsSecurity

Can Predictive Analytics Prevent DDoS Attacks Against SME Websites?

6 Min Read
blockchain in 2019
BlockchainExclusive

Will Finance Finally Come Around To Blockchain In 2019?

9 Min Read

Top Stories in Cybernews

7 Min Read

Is Cloud Computing Secure for Financial Services Industry?

4 Min Read

SmartData Collective is one of the largest & trusted community covering technical content about Big Data, BI, Cloud, Analytics, Artificial Intelligence, IoT & more.

ai chatbot
How AI Website Chatbots Improve Customer Support and Lead Generation
Chatbots Exclusive
giveaway chatbots
How To Get An Award Winning Giveaway Bot
Big Data Chatbots Exclusive

Quick Link

  • About
  • Contact
  • Privacy
Follow US
© 2008-26 SmartData Collective. All Rights Reserved.
Welcome Back!

Sign in to your account

Username or Email Address
Password

Lost your password?