Carbanak Cybercriminals Stole Millions Using Malware.

Written by Alberto Scicali

The Carbanak cyber-criminal group has stolen from $300 million to $900 million using malware. In this attack over 100 banking and financial institutions, in 30 nations, have fallen victim; non of which have come forward acknowledging that this attack has occurred. This has been an ongoing attack since 2013 and is still continuing to this day.

The Carbanak group infected admin accounts of these banking institutions through a mass phishing attack that was sent to wide array of employees. This malware included key loggers and remote access tools that allowed the recording of infected computers screen. Through the recordings gathered, they were able to learn the necessary protocols to execute cash transfers without raising red flags.

Once the Carbanak group successfully learned the necessary techniques they began transferring various amount of money (up $10 million at a time in some cases) to themselves through four different methods: they transferred cash through fraud accounts and E-payment systems to other banking accounts. They controlled ATMs directly, placing their members near an ATM, which was then ordered to dispense cash at set-times. As well as by inflating banks members account balances and transferring the difference to their accounts (This method was possible do to Carbanaks discovery that many banks check accounts on a cycle of every 10 hours, allowing the inflations and deductions to go unnoticed for some time).

This was one of the most sophisticated cyber robberies that has occurred in recent times and as of now has not been stopped by any authorities.