[WASC-WHID] WHID 2011-89: China Implicated In Hacking Of SMB Online Bank Accounts

WASC Web Hacking Incidents Database wasc-whid at lists.webappsec.org
Wed Apr 27 09:04:49 EDT 2011


Entry Title: WHID 2011-89: China Implicated In Hacking Of SMB Online Bank
Accounts
WHID ID: 2011-89
Date Occurred: April 26, 2011
Attack Method: Banking Trojan
Application Weakness: Insufficient Authentication
Outcome: Monetary Loss
Attacked Entity Field: Finance
Attacked Entity Geography:
Incident Description: This time it wasn't an "advanced persistent threat"
that China was associated with: a fraud alert issued by the FBI today
implicates China in a cybercrime operation that bilked U.S.-based small- to
midsize businesses of $11 million over the past year.
Mass Attack: Yes
Number of Sites Affected: 20
Reference: 
http://www.informationweek.com/news/security/vulnerabilities/229402300
Attack Source Geography: China
Additional Link: 
http://www.ic3.gov/media/2011/ChinaWireTransferFraudAlert.pdf


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webappsec.org/pipermail/wasc-whid_lists.webappsec.org/attachments/20110427/9d2455d6/attachment-0003.html>


More information about the wasc-whid mailing list