- News & Events
July 26, 2013
NASDAQ, 7-Eleven, Carrefour S.A., JCPenney Inc., Wet Seal Inc., Commidea Ltd., Dexia Bank Belgium, JetBlue Airways, Dow Jones Inc., Bank A, Euronet, Visa Inc., Discover Financial Services Inc., Ingenicard US Inc. and Diners Club International were collectively $300 million poorer as a result of a credit card fraud.
Five Russians and Ukrainians with ties to hacker Albert Gonzalez were indicted by the U.S. Attorney for the District of New Jersey for having stolen more than 160 million credit and debit cards from payment processors Global Payments and Heartland Payment Systems, and others including the Hannaford Brothers grocery chain.
According to Tracy Kitten on bankinfosecurity.com, Gonzalez was named as a co-conspirator and Vladimir Drinkman, Aleksandr Kalinin, Roman Kotov, Mikhail Rytikov and Dmitriy Smilianets, who allegedly specialized in malware designed to compromise payment card data, have been charged with stealing credit and debit details and later reselling the information in underground forums.
Stolen card data was used to create “white payment cards.” These were purportedly used to make cash withdrawals at ATMs and fraudulent purchases for goods and services.
From August 2005 through July 2012, the defendants and co-conspirators allegedly led a hacking ring that attacked several networks and resulted in many high-profile breaches.
Attacking some of the world’s largest payment processors, retailers and financial institutions, the men under indictment allegedly ripped off usernames and passwords as well as card numbers.
Tracy Kitten notes, “In addition to Gonzalez, Damon Patrick Toey, Vladislav Anatolievich Horohorin and another unnamed individual also have been named co-conspirators in the indictment. But so far, only Horohorin has been charged.”
In 2010, Albert Gonzalez was sentenced to 20 years in prison for cybercrime. At the time, this was the longest sentence meted out for computer crime by a U.S. court.
The case against those indicted came out of the investigation into Gonzalez, who has been cooperating with law enforcement to track hackers involved with a global cybercrime ring nicknamed the “Shadowcrew.”
ThreatMetrix is the fastest-growing provider of integrated web fraud and cybersecurity solutions. The TrustDefender™ Cybercrime Protection Platform helps companies prevent unauthorized access to web and mobile applications, protect sensitive data, and secure transactions against account takeover, payment fraud, identity spoofing, malware, and data breaches. ThreatMetrix protects more than 1,500 customers and 9,000 websites across a variety of industries, including financial services, enterprise, e-commerce, payments, social networks, government, and insurance. For more information, visit www.threatmetrix.com or call 1-408-200-5755.
To join in the cybersecurity conversation, follow us on Twitter @ThreatMetrix.
Posted by Dan Rampe
Tags: Account Takeover, Account Takeover Fraud, Bank Fraud, CNP fraud, Cookieless Device Identification, Cookies, Credit Card Fraud, Cyber attacks, Device Detection, Device Fingerprinting, Device ID, Device Identification, Fraud Prevention, Identity theft, Malware, Malware Protection, MitB, Mobile fraud, Online Fraud, PII, ThreatMetrix, ThreatMetrix Cybercrime Index, ThreatMetrix Cybercrime Protection Platform, ThreatMetrix Global Trust Intelligence Network, Web Fraud