"High Roller" Hacker Attack is Stealing Hundreds of Millions From the Rich
June 26, 2012 3:13 PM
comment(s) - last by
Attack is an extension of the man-in-the-browser attack methodology
Security researchers admit they're still struggling to defeat man-in-the-browser (MitB) attacks. The best-known example of this attack is the Zeus (
, etc.) botnet, which is comprised of machines infected by drive-by-download or phishing attacks.
Researchers are currently only 23 percent effective at detecting and removing Zeus variants, although
attacks on command and control servers
have been somewhat effective. The malware operates via a browser extension in Firefox or via a Browser Helper Object in Microsoft Corp.'s (
) Internet Explorer. The Trojan is used to carry out traditional malware activities, such as spamming and bank transaction interception/modification.
I. Hackers Steal From the Rich, Give to Themselves With Op. High Roller
Now even as researchers continue to struggle with Zeus and
its successor SpyEye
, there's an even more sinister malware storm brewing that Guardian Analytics and Intel Corp. (
) subsidiary McAfee
have been tracking
[PDF], dubbed "Operation High Roller".
The new attack is much more organized, driven via cloud controllers, versus Zeus where infected machines often operated in a rogue lone manner.
Using cloud servers, machines infected with High Roller Trojans are hit with server-based fraudulent bank transactions totaling up to $130,000 USD (€100,000). These very large transactions are ferried through "mule" accounts also operated by the control-servers. The attacks use Zeus or SpyEye for reconnaissance and then use compromised local machines to target large accounts via
"spear phishing" tactics
An example "spear phishing" message from an infected machine. [Image Source: McAfee]
The new multi-approach malware is able to circumvent typical "chip and pin" physical security features, such as the smartcard reader ID systems commonly used in Europe. It targets primarily "high rollers" -- accounts with more than €250,000, the kind commonly maintained by wealthy individuals and corporations. This differs from Zeus and other past attacks that primarily targeted the masses with smaller transactions
Op. high roller is stealing millions from the wealthy [Image Source: The Hibernia Times]
II. Sophisticated Cloud-Commanded Malware Hits U.S.
The attacks initially targeted Europe, but have since spread to the U.S. and Columbia. The hardest hit region in Europe, according to McAfee is the Netherlands, which suffered over €141M ($175M USD). However attacks in the U.S. are also escalating with 8 to 10 malware variants currently attacking 109 businesses.
Texas is the state currently being hardest hit by the attacks. Numerous account holders in New York, Georgia, and California were also targeted.
Many states have been hit by Operation High Roller. [Image Source: McAfee]
Most of the attacks originated from command-and-control servers than Russia, though some C&C servers were also found in China and the U.S., among other places.
This article is over a month old, voting and posting comments is disabled
RE: Well if the rich are being targeted
6/27/2012 2:39:09 PM
There are many "underfunded" police departments, the issue lies largely in the fact that political policy largely impacts the size of a police force needed to enforce the policy. As well as in many areas, criminal population can dwarf the legitimate population and an outside intervention would be needed in those such cases.
Businesses not only lure people to an area and, but also pay the taxes that support those infrastructure things like teachers and policemen. A sound political policy understands that and scales the government size around the $$ it receives with a shift in the focus of funds as society shifts.
Teachers and policemen are required for a modern day society to function. Excessive compensation of those workers is fiscally irresponsible and what leads to things like what happened to the Big 3 automakers where the workers end up getting less than what they would have had the compensation not gotten excessive.
Like it or not, R or D, businesses employ people and pay taxes, a government expense is a necessary loss and too much government like a top heavy boat, will capsize a country and hurt everyone involved.
"We basically took a look at this situation and said, this is bullshit." -- Newegg Chief Legal Officer Lee Cheng's take on patent troll Soverain
Malware Focusing on Macs, Mobile Devices Increasing
May 24, 2012, 9:18 AM
Wrath of the Titans: Microsoft, U.S. Feds Slay Godly "Zeus" Botnets
March 26, 2012, 3:21 PM
China Appears to Have Committed "Unprecedented" Cyber-Attack on Canada
February 17, 2011, 10:32 AM
Kneber Botnet May Have Infected 75,000 PCs Globally
February 18, 2010, 10:44 AM
Google Knocked by Analysts, But Shows Strokes of Brilliance in Q1 2014
April 18, 2014, 2:33 PM
Google Street View and reCAPTCHA Get Smarter with New Algorithm
April 17, 2014, 9:02 AM
Mt. Gox CEO Refuses to Come to the U.S. in Financial Crimes Probe
April 16, 2014, 3:50 PM
Mark Zuckerberg: Facebook Home Reception Slower than Expected, Social Graph Will Pick Up
April 16, 2014, 2:00 PM
FBI's Facial Recognition Database to Have 52 Million Criminal, Non-Criminal Photos by 2015
April 15, 2014, 2:56 PM
Microsoft's Anti-Google "Scroogled" Campaign May Have Ended
April 15, 2014, 2:44 PM
Most Popular Articles
Cities to Carpoolers: Sharing Your Car is Illegal, We Will Seize Your Cars
April 4, 2014, 9:17 PM
A-10 Warthog May Live to Fight Another Day with Support from Lawmakers
April 14, 2014, 9:41 AM
EFF: NSA May Have Used IRC Botnets to Exploit Heartbleed for Last Two Years
April 14, 2014, 4:43 PM
Quick Note: Toyota Attempts to Erase “Boring” Image with ’15 Camry SE Hybrid
April 16, 2014, 11:36 AM
A Bug's Life: Female Cave Bugs Have Penises, Penetrate Males for Three Days
April 17, 2014, 7:20 PM
Latest Blog Posts
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
Tesla vs. BMW: Who Has the Safer EV?
Feb 1, 2014, 2:56 PM
Justice Leaks Details of Next HTC One Two Flagship Phone
Dec 5, 2013, 4:04 PM
Global Cyber Espionage Concerns Reveal Growing Cyber Armies
Nov 29, 2013, 11:04 AM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information