Newsletters
Customer Relationship Management News NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Please click for more information, or scroll down to pass the ad, or Close Ad.
Home CRM Systems Customer Service Business Intelligence Sales & Marketing More Topics...
Vblock™ Systems:
Advanced converged infrastructure
increases productivity & lowers costs.

www.vce.com
Network Security
Tame your scariest paperwork. Find Out How
Average Rating:
Rate this article:  
FBI: Era of Big Data = Era of Big Data Thefts
FBI: Era of Big Data = Era of Big Data Thefts

By Adam Dickter
January 24, 2014 11:03AM

Bookmark and Share
Crime targeting big data is expected to be a major issue of 2014, and not only in the United States. Germany recently saw a major e-mail breach and South Korea saw a counterfeit credit card scheme affecting some 60 million accounts. "The high dollar value gained from some of these compromises can encourage intruders," the FBI said.
 


The hacking of Target servers to obtain millions of passwords and credit card numbers may have been the most successful data breach in U.S. history, but the worst may be yet to come, warns the FBI.

The nation's top law enforcement agency is warning companies that deal with massive amounts of consumer data that cybercrime is on the rise, citing some 20 attacks on big companies in the past year. Target saw more than 40 million credit and debit card records affected during the holiday shopping season by its breach, and the personal information of 70 million customers was also compromised. Luxury retailer Neiman Marcus announced this week that 1.1 million of its customer accounts were compromised by hackers in the middle of last year.

Just Scraping the Surface

A Jan. 17 report sent to big data companies, "Recent Cyber Intrusion Events Directed Toward Retail Firms," was obtained by Reuters news service. It warns that the attacks involve RAM scraping at the point of service (POS), in which data from the magnetic card swipers at stores can be stolen during the brief time the data is in a computer system's memory before it is encrypted.

"The accessibility of the malware on underground forums, the affordability of the software and the huge potential profits to be made from retail POS systems in the United States make this type of financially motivated cyber crime attractive to a wide range of actors," the FBI warned in the report, as quoted by Reuters.

Calls to the FBI's New York media office regarding the report were not returned in time for publication.

Crime targeting big data is expected to be a major issue of 2014, and not only in the United States. Germany recently saw a major e-mail breach and South Korea saw a counterfeit credit card scheme affecting some 60 million accounts.

Hackers don't only engage in this activity firsthand, but design so-called root-kits to sell to others. Some security experts believe the Target hacking was accomplished using off-the-shelf malware coded by a pair of Russian teens, who then sold the malware to the cybercriminals who used it on Target.

The FBI's report, Reuters said, delves into the threat of the growing malware market, citing a program called Alina that can be remotely updated to evade detection and removal, which has been offered for sale for as little as $6,000, a small investment considering the potential net gain in illegal profit.

Big Malware

"The high dollar value gained from some of these compromises can encourage intruders to develop high-sophistication methodologies, as well as incorporate mechanisms for the actors to remain undetected," the FBI said in the report.

Chester Wisniewski, senior security analyst at Sophos, told us he was glad to see the FBI being proactive on this issue.

"We have been writing about this malware for over three years, hoping to help raise awareness among merchants and provide tools and advice to protect them as well," he said.

"While the FBI may only be hearing of a few cases, we are detecting malware similar to the Target malware more than 150 times every week."

He said Sophos would present a demonstration about the malware at the coming RSA security conference.
 

Tell Us What You Think
Comment:

Name:



APC has an established a reputation for solid products that virtually pay for themselves upon installation. Who has time to spend worrying about system downtime? APC makes it easy for you to focus on business growth instead of business downtime with reliable data center systems and IT solutions. Learn more here.


 Network Security
1.   Lessons from Verizon's Threat Report
2.   Verizon Report Exposes Cyberthreats
3.   How Are Web Sites Post-Heartbleed?
4.   White House Updating Privacy Policy
5.   Target Hackers May Be Tough To Find


advertisement
How Are Web Sites Post-Heartbleed?
Questions on open source, security.
Average Rating:
Heartbleed Exploit Could Cost Millions
But it could have been prevented.
Average Rating:
Michaels: Nearly 3M Cards Breached
But the hack has been contained.
Average Rating:


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
What Verizon's Data Breach Report Can Teach Enterprises
It’s probably not a jaw-dropper, but cyberespionage is officially on the rise. And the use of stolen or misused credentials is still the leading way the bad guys gain access to corporate information.
 
Top Cyberthreats Exposed by Verizon Report
Beyond Heartbleed, there are cyberthreats vying to take down enterprise networks, corrupt smartphones, and wreak havoc on businesses. Verizon is exposing these threats in a new report.
 
Where Do Web Sites Stand, Post-Heartbleed?
A security firm says the vast majority of Web sites have patched themselves to protect against the Heartbleed bug, but now there are questions raised on the reliability of open-source programs.
 

Navigation
CRM Daily
Home/Top News | CRM Systems | Customer Service | Business Intelligence | Sales & Marketing | Contact Centers | Customer Data | CRM Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters | XML/RSS Feed

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.