Jump to content
Usr6

860.000 E furati din atm-uri intr-o noapte in Ro

Recommended Posts

In just one night a Russian crime gang stole 3.8 million slopes (860,000 euros) from 32 ATMs belonging to the Raiffeisen Romania bank.

Cybercriminals stole 3.8 million slopes (860,000 euros) from 32 ATMs belonging to the Raiffeisen Romania bank using an infected RTF document. The criminal organization led by Dmitriy Kvasov operated in Romania, the gang stole the money in just one night in 2016.

“One night Raiffeisen Bank lost control of all ATMs in Romania • Although it seems impossible, the control of ATMs across the country was taken over by a group of Russian hackers • It is one of the biggest thefts of cash money in the history of Romania, and the authorities did not blow a word” reported the website bzi.ro.

The Organized Crime and Counterterrorism Office (DIICOT) who investigated the culprits managed to arrest the leader of the criminal organization.

The Russian hackers launched a spear-phishing attack against Raiffeisen Romania between August 9, 2016, and September 4, 2016, they sent email messaging using a weaponized RTF document.
The bait document that appeared as sent on behalf of the European Central Bank
contained the code to trigger a vulnerability in the target systems.

In this way the attackers took control over the whole network of the bank, then they were able to control the ATMs.

“The extremely well-coordinated criminal organization, wearing sunglasses and hooded anoraks waiting for the command, waited for bags and bags in their hands before the Raiffeisen Iasi, Bucharest, Suceava, Timeshare, Constanta, Plitvice, Saxon and Crevedia automats.” states the Maszol.ru. “At the hands of their leaders, at least a few buttons, 32 cars released them all the money. If more men had been involved with the criminal organization, they could have virtually eliminated all the automatons of the bank.”

Raiffeisen cyber heist

According to the report, the attackers were able to instruct the 32 ATMs to dispense the cash, the investigators highlighted that the attackers only targeted systems in Romania, but once compromised the network of the bank they were also able to control any ATM worldwide belonging to the financial institution.

The bank confirmed that hackers did not access the customers’ account after the security breach.

 

Sursa: http://securityaffairs.co/wordpress/70046/cyber-crime/raiffeisen-cyber-heist.html

 

Pe acelasi subiect:

https://www.bzi.ro/exclusivitatea-anului-cutremur-fara-precedent-in-sistemul-bancar-romanesc-secret-imens-ascuns-la-diicot-iasi-toate-bancomatele-unei-celebre-banci-au-fost-compromise-643428

https://www.bzi.ro/exploziv-raport-intern-strict-secret-intrat-in-posesia-bzi-fara-precedent-toate-datele-clientilor-raiffeisen-in-pericol-cei-mai-tari-hackeri-au-controlat-calculatoarele-bancii-643514

 

 

  • Upvote 3
Link to comment
Share on other sites

4 hours ago, mariuss615 said:

[...] la cate rugaciuni de multumire si sanatate primeau de la romani.

Sincer, nu prea cred ca multumea cineva cuiva...

2 hours ago, Sithalkes said:

Lipsiti de imaginatie, infractorii astia. Trebuiau sa se inscrie intr-un partid, atunci ar fi facut rost de oameni, si sa goleasca toate ATM-urile din tara.

Castigau alegerile sigur asa, si apoi se gratiau! :)))))))

Vezi ca le dai idei.

 

In alta ordine de idei, cine a preluat (sau a scris/transcris) citatul de pe Maszol.ru (care e de fapt maszol.ro) a dat-o de gard grav, cu traducerea :)) Zici ca e telefonul fara fir.

Ce scrie pe http://securityaffairs.co/wordpress/70046/cyber-crime/raiffeisen-cyber-heist.html:

5 hours ago, Usr6 said:

[...] Iasi, Bucharest, Suceava, Timeshare, Constanta, Plitvice, Saxon and Crevedia [...]

Ce scrie pe http://www.maszol.ro/index.php/szajtato/93368-az-evszazad-rablasa-kifosztottak-egy-nagy-bank-romaniai-automatait:

Quote

[...] iași-i, bukaresti, suceavai, temesvári, konstancai, ploiești-i, szászvárosi és crevediai [...]

Ce ar trebui sa scrie:

Quote

[...] Iași, București, Suceava, Timișoara, Constanța, Ploiești, Orăștie (cred, nu sunt sigur), Crevedia [...]

Sa nu mai aducem in discutie traducerea din Maghiara (presupun) in Engleza.

Edited by u0m3
Link to comment
Share on other sites

  • Active Members

Oare de ce ma bucur pentru rusii aia ? Hmm .. da' nu era Romania plina de servicii intelijens?  Parca eram miezul la investit in "infrastructura securitatii cibernetice" si alocari handicapate de fonduri pentru ...nimic. Parca s-a aprobat si un fel de lege care ne-a borat un "frate mai mare" care ne proteja cu un ochi chior  de teroristi (apropo cine ar face un atentat in statul asta deja detonat si degeaba? ). Eu asa imi aduc aminte.

 

Pe dumitru ala care l-a cautat la oo sa vada daca e rus, ucrainean sau alta rasa de nomad? Cam plictisit de toba "rusii rusii rusii". Hai cu o propaganda mai serioasa. Ca sa inchei grandios: "Mana intinsa care nu spune o poveste nu primeste pomana, fii profesionist ce dreacu!"  

Edited by vatman32
Ma razgandesc des.
Link to comment
Share on other sites

Quote

Hmm .. da' nu era Romania plina de servicii intelijens? 

Pai ce are de-a face intelijens-ul cu bancomatele Raiffeisen sau cu fisierele RTF manipulate in reteaua Raiffeisen ...? "intelijens"-ul, dupa cum spui tu, se ocupa (si s-a ocupat ) ca sa nu fie data jos, literalmente, locatia / locatiile bancii...!

Cat despre banii eliberati, Raiffeisen a pasat problema mai departe, fie catre producatorii ATM-urilor fie catre societatile de asigurari / reasigurari.

Una peste alta, in contabilitate este posibil sa se fi inregistrat drept plata pentru "bug disclosure" :))

 

Link to comment
Share on other sites

  • Active Members
9 hours ago, otb said:

Pai ce are de-a face intelijens-ul cu bancomatele Raiffeisen sau cu fisierele RTF manipulate in reteaua Raiffeisen ...? "intelijens"-ul, dupa cum spui tu, se ocupa (si s-a ocupat ) ca sa nu fie data jos, literalmente, locatia / locatiile bancii...!

Cat despre banii eliberati, Raiffeisen a pasat problema mai departe, fie catre producatorii ATM-urilor fie catre societatile de asigurari / reasigurari.

Una peste alta, in contabilitate este posibil sa se fi inregistrat drept plata pentru "bug disclosure" :))

 

Le tot citesc blogul de o perioda, de aici si ironiile la adresa intelijens. Sunt intr-un asa fel redactate articolele alea de trebuie sa faci analiza pe text sa intelegi ca iarba e verde.

 

Gasesc amuzant faptul ca s-a dat o lege care trebuia sa "stie, vada tot", in fiecare an li se maresc bugetele, in fiecare an cer mai mult ca tot saraci sunt (sfat: sa mai taie din sifoane) indiferent de cate miliarde au luat cu un an inainte (in conditia in care peste 50% din RO isi fac nevoile in fundul curtii), si toate astea ca in final sa nu aibe un amarat de pont despre niste unii care stateau cu sacii in fata a 32 de bancomate. Pai daca deschid TV-u numai piept umflat cu grade mucegaite pe umar care explica toata ziua cum ei sunt miezul, alfa si omega. Cuvinte putine si atitudine plina de mister. Parca ma uit la un thriller cand vorbeste cate unu indiferent de la ce institutie a "Legiuitorului".

 

Sa raspund si direct la intrebare: statul teoretic iti asigura tie fie ca esti persoana juridica sau fizica niste beneficii pentru care ai si niste obligatii. Obligatii care desi le indeplinesti, o iei in gura. Daca vrea "statul", poate sa i se rupa ca ti-ai luat una-n cap de la vreo ceafa de smecher, pentru ca smecherul era neam cu gaborul, si asa ca taci. Dar obligatia o achiti. SAU.

 

Gen:

"Ba nene, ia de aici 48730493 lei, atat e impozitul pe un an. Dar ma aperi de hoti da? Te asiguri ca daca roseste unu' la telefon card, esti pe el."

 

""Da'' sefu esti nebun, doar ne stii, suntem miezul. Avem grade, burti si neamuri la toate nivelele institutionale."

( se reuseste furtul, desi toata tiganimea stia ca trebuie sa vina cu saci de acasa sa colecteze bani din bancomate )

 

"Ba nene ai zis ca afli daca e ceva.. ti-am dat o gramada de bani, ce ai facut?"

 

"Bai ia gata, ia vezi. Institutiile noastre isi fac treaba. Nu cumva esti complice?"

 

@gaddafi nu cumva e vorba de ala care postase pe facebook de l-a gasit? :)) Nu m-ar mira. Mai era un handicapat care isi prezenta armele cu mandrie.

Edited by vatman32
  • Upvote 2
Link to comment
Share on other sites

Eu cred ca leak-ul a fost intentionat, ganditi-va ca din mai intra GDPR, si cum ei nu au anuntat nimic in primele 72h, daca s-ar fi aflat dupa aceasta data amenda ar fi fost giganta:

 

Sanctions
The following sanctions can be imposed:

a warning in writing in cases of first and non-intentional noncompliance
regular periodic data protection audits
a fine up to €10 million or up to 2% of the annual worldwide turnover of the preceding financial year in case of an enterprise, whichever is greater, if there has been an infringement of the following provisions (Article 83, Paragraph 4[21])
the obligations of the controller and the processor pursuant to Articles 8, 11, 25 to 39, and 42 and 43
the obligations of the certification body pursuant to Articles 42 and 43
the obligations of the monitoring body pursuant to Article 41(4)
a fine up to €20 million or up to 4% of the annual worldwide turnover of the preceding financial year in case of an enterprise, whichever is greater, if there has been an infringement of the following provisions: (Article 83, Paragraph 5 & 6[21])
the basic principles for processing, including conditions for consent, pursuant to Articles 5, 6, 7, and 9
the data subjects' rights pursuant to Articles 12 to 22
the transfers of personal data to a recipient in a third country or an international organisation pursuant to Articles 44 to 49
any obligations pursuant to member state law adopted under Chapter IX
noncompliance with an order or a temporary or definitive limitation on processing or the suspension of data flows by the supervisory authority pursuant to Article 58(2) or failure to provide access in violation of Article 58(1)

https://en.wikipedia.org/wiki/General_Data_Protection_Regulation#Sanctions

  • Upvote 1
Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.



×
×
  • Create New...