Check Point provides multiple protections against ... » Check Point has announced that its network security products offer multiple protections against the ... Tyco UAE and CNL Software partner for major UAE pr... » CNL Software has partnered for an iconic security management project with Tyco Fire & Security UAE, ... Cubic unveils new corporate branding » SAN DIEGO, Calif.: Cubic Corporation has introduced its new corporate brand identity. The name Cubic... Taxware acquires VAT Resource...enhances value add... » Wilmington, MA.: axware, a global provider of sales, use and value added tax (VAT) compliance softwa... Courion expands international footprint with two n... » London, UK: Courion has announced two new hires in the UK and the Middle East to help boost its stra... Skyscape sponsors race across America team in supp... » London: Skyscape Cloud Services Limited has announced that it is supporting the London Pride Spinhal... gateprotect becomes a Member of the German Allianc... » Hamburg: gateprotect AG Germany, Germany’s leading independent IT security specialist, has been admi... Building big ideas from small bricks: COPA-DATA la... » Since the beginning of April, LEGO bricks have been taking over the desks and offices of students, e... HeartBleed Vulnerabil​ity Overshadow​s Patch Tuesd... » In this blog Wolfgang Kandek, CTO, Qualys, detailS the vulnerability in OpenSSL and how it can be... Forensic experts team up with Teesside University ... » Leading forensic experts and law enforcement professionals recently gathered to find out how Tee...

CLICK HERE TO

Advertise with Vigilance

Got News?

Got news for Vigilance?

Have you got news/articles for us? We welcome news stories and articles from security experts, intelligence analysts, industry players, security correspondents in the main stream media and our numerous readers across the globe.

READ MORE

Subscribe to Vigilance Weekly

Information Security Header

According to US Attorney Loretta Lynch, "This was indeed the largest theft of this type that we have yet seen. This was a 21st century bank heist that reached through the Internet to span the globe. But, instead of guns and masks, this cybercrime organization used laptops and malware."

 

According to George Tubin, Senior Security Strategist, Trusteer, “It appears the criminals in this case used advanced malware to breach the corporate network of two unnamed credit card processors that process prepaid debit card transactions. This type of breach almost always starts with an employee PC being compromised with malware in order to gain a foothold into the corporate network. Once inside the corporate network, the criminals can do what they want - and this massive heist clearly demonstrates the free reign afforded the cybercriminals to alter highly sensitive, highly protected information to ultimately steal $45 million. Despite using market-leading endpoint and network protection solutions most large enterprises are (knowingly or unknowingly) still breached by advanced malware.”

Tubin continued, “The only way to prevent these attacks is to prevent advanced, information-stealing malware from compromising employee endpoints - the weakest link in the security chain - and then moving the attack inside the corporate network. Corporate breaches can only be prevented by stopping malicious files from invisibly sneaking onto employee computers through both unknown and unfixed software flaws (aka, vulnerabilities). Because, once malware infects the user's computer, it's game over.”

“While this particular crime was highly visible due to the stolen funds, many corporate breaches go unnoticed as sensitive corporate data and highly valuable intellectual property are siphoned electronically out of the corporate network”, he said.