Criminals stole 2.5 billion rubles in a year through online banking systems. Virus attacks for Android have grown
In Russia, from June 2014 to June 2015, fraudsters stole 2.6 billion rubles. Both companies and individuals became victims. More than sixty million rubles were stolen using trojans for Android devices.
At the conference “Trends in the development of high-tech crime 2015”, Group-IB spoke about the activities of cyber fraudsters over the past year.
According to Group-IB , legal entities as a result of fraud attacks lost 1.9 billion rubles for the year from June 2014 to June 2015. On average, an organization loses 480 thousand rubles per attack, and daily hackers conduct attacks on 16 companies.
Hackers bypass security tools, including tokens and additional sms authentication. Trojans make the client see the correct details, although in fact the money goes to fake accounts.
Banks lost 638 million rubles over the same period. In February 2015, an attack on Energobank occurred , as a result of which the bank lost about 300 million rubles in 14 minutes. Bank sues brokers BCS, Finam and Otkrytiewhose customers made a profit in the course of unauthorized transactions for the purchase and sale of currency on the Moscow Exchange.
The total amount of unauthorized operations with payment cards issued in the territory of the Russian Federation, according to the estimates of the Central Bank for 2014, amounted to 1.58 billion rubles. According to a new report by Group-IB, from June 2014 to June 2015, criminals stole 100 million rubles from bank cards of individuals, of which 61 million with the help of Android Trojans.
In August 2015, Sberbank and department “K” caught fraudsters who stole five million rubles from bank cards using attacks on Android smartphones. The group organized virus attacks on Android devices of customers of Russian banks and stole funds from cards. The program requested a balance tied to a bank card number, hid notifications, and transferred funds to dummy accounts.
In 2012, six criminal groups were engaged in theft using viruses for Android. Three groups were arrested, but ten new groups appeared instead. Every day, seventy users of mobile banks become victims of cybercriminals.
After transferring funds to front accounts, this money must be cashed. The Group-IB report reports ecosystem development for criminals. Out of 2.6 billion for cashing out, criminals paid 1.92 billion, that is 73%.
The revenue of seven stores selling data on bank cards, logins and passwords of payment systems amounted to 155 million rubles.
At the conference “Trends in the development of high-tech crime 2015”, Group-IB spoke about the activities of cyber fraudsters over the past year.
Company attacks
According to Group-IB , legal entities as a result of fraud attacks lost 1.9 billion rubles for the year from June 2014 to June 2015. On average, an organization loses 480 thousand rubles per attack, and daily hackers conduct attacks on 16 companies.
Hackers bypass security tools, including tokens and additional sms authentication. Trojans make the client see the correct details, although in fact the money goes to fake accounts.
Banks lost 638 million rubles over the same period. In February 2015, an attack on Energobank occurred , as a result of which the bank lost about 300 million rubles in 14 minutes. Bank sues brokers BCS, Finam and Otkrytiewhose customers made a profit in the course of unauthorized transactions for the purchase and sale of currency on the Moscow Exchange.
Attacks on cardholders
The total amount of unauthorized operations with payment cards issued in the territory of the Russian Federation, according to the estimates of the Central Bank for 2014, amounted to 1.58 billion rubles. According to a new report by Group-IB, from June 2014 to June 2015, criminals stole 100 million rubles from bank cards of individuals, of which 61 million with the help of Android Trojans.
In August 2015, Sberbank and department “K” caught fraudsters who stole five million rubles from bank cards using attacks on Android smartphones. The group organized virus attacks on Android devices of customers of Russian banks and stole funds from cards. The program requested a balance tied to a bank card number, hid notifications, and transferred funds to dummy accounts.
In 2012, six criminal groups were engaged in theft using viruses for Android. Three groups were arrested, but ten new groups appeared instead. Every day, seventy users of mobile banks become victims of cybercriminals.
Ecosystem for Cybercrime
After transferring funds to front accounts, this money must be cashed. The Group-IB report reports ecosystem development for criminals. Out of 2.6 billion for cashing out, criminals paid 1.92 billion, that is 73%.
The revenue of seven stores selling data on bank cards, logins and passwords of payment systems amounted to 155 million rubles.