One of the global leaders inwards preventing together with investigating cyber crimes Group-IB reported on the blocking of 5 accounting sites created specifically for stealing coin through the Bank Client system.
According to Group-IB, the goal of hackers is to infect visitors amongst viruses Buhtrap together with RTM. Accountants, lawyers together with other professionals working amongst remote banking services (RBS) convey larn victims of attacks. From Apr at to the lowest degree 200 yard people convey already visited iii of 5 websites.
The scheme was detected afterwards trying to charge Malware inwards 1 of the Russian Banks. During the investigation constabulary established that Trojan was loaded from the website buh-docum[[dot]]ru containing hundreds of specialized documents for accountants. The resources was inwards the exceed house inwards all search engines. According to Group-IB, hackers received near 1.2 meg rubles (1.3 meg INR) of each successful assault per day.
Experts Federal Reserve annotation that owners of legitimate sites tin easily honour presence of a malicious software. So, the attackers are moving to a dissimilar technique - creating websites amongst hundreds of useful documents.
"if an accountant needs a specific document that is non available anywhere, he volition give-up the ghost to whatever website, whatever forum for information.", the local media quote Yulia Gladysheva, an Energy Consulting partner,as saying.According to Russian Global Cybersecurity companionship Positive Technologies, the role of the malicious software is 1 of the most mutual methods of attacks. Alexey Novikov, Head of the Security Center of Positive Technologies, said that it is necessary to command the safety of computers.
In this case, it is extremely hard for Banks to protect their customer from theft. Banks can't command the actions of accountants: whether they watch questionable sites, whether they download infected files, whether they convey an antivirus. However, according to Alexei Lukatsky, Security Consultant of Cisco, in that place are ways to destination hackers. For example, 1 reckoner volition laid a payment, therefore this payment volition live on sent to the depository fiscal establishment from simply about other computer. The Central Bank of Russian Federation hopes that this stair out volition complicate the operate of hackers.
- Christina