Cyberthieves using malicious software discovered by IBM Security have stolen $4 million from business customers of two dozen financial services providers this month, IBM said.
The software, called GozNym, infects devices when people it targets either click a link or open an email attachment. It remains inactive until users log into their bank accounts, when it is able to access and steal information.
"The end result is a Trojan in the wild," IBM X-Force, IBM’s security research arm, said
-
The inadvertent downloading of thousands of consumer records to a thumb drive at the FDIC could happen anywhere. Here's a look at what the FDIC did right and what it could have done better.
April 14 -
Fintech firm Tanium says it has found a unique method for securing the tens of thousands of vulnerable points in the computer networks of banks and other companies.
September 15 -
Technology at many banks has been assembled haphazardly over years. That makes for complex systems with lots of connections. Those points are prime targets for cybercriminals to find a way in.
March 18 -
American Express has filed a notice with the attorney general in California informing some of its cardholders that their account information may have been compromised.
March 17
IBM Security said Friday that an analysis of the malware’s configuration file concluded that the hackers had targeted business accounts of 22 banks, credit unions and "popular e-commerce platforms" in the U.S. and two in Canada.
It did not identify any of the institutions or say how many customers were affected.