Feeds

FBI-led probe nets phishing gang

That's trawl folks

SANS - Survey on application security programs

Seventeen members of an alleged international phishing and carding gang have been arrested in the US and Eastern Europe following an FBI investigation.

Eastern European fraudsters are alleged to have run a series of identity theft scams targeting customers of major financial institutions between August and October 2004. These fraudsters sold on the personal details of marks to their US accomplices, who plundered compromised bank accounts and traded in stolen credit card information.

The arrests in Poland and the US came as part of an ongoing FBI investigation code-named Operation Cardkeeper. FBI investigators worked with local police in Poland and Romania to investigate the trade of stolen credit card information online, obtained through various phishing scams.

The alleged ringleader of the gang, a Pole called Mateusz Rymski (AKA Blindroot), is suspected of hacking into the systems of third party firms and renting out their web space to other fraudsters. So far four arrests have been made in the US and 13 in Poland as part of the investigation.

Wired reports that three of the four US suspects were caught with cards and MSR-206 machines used to encode data onto blank credit cards. One was caught trying to flush counterfeit credit cards down the toilet.

Investigators have identified tens of thousands of compromised credit card numbers and thousands of purloined identities in the course of the investigation. The extent of fraudulent losses caused by the gang remains unclear.

Further arrests in the US and Romania, where three search warrants were executed, are expected to follow. The Romanians are suspected of creating the key-logging Trojan software used in the scam. ®

Combat fraud and increase customer satisfaction

More from The Register

next story
Parent gabfest Mumsnet hit by SSL bug: My heart bleeds, grins hacker
Natter-board tells middle-class Britain to purée its passwords
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Web data BLEEDOUT: Users to feel the pain as Heartbleed bug revealed
Vendors and ISPs have work to do updating firmware - if it's possible to fix this
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
prev story

Whitepapers

Designing a defence for mobile apps
In this whitepaper learn the various considerations for defending mobile applications; from the mobile application architecture itself to the myriad testing technologies needed to properly assess mobile applications risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Securing web applications made simple and scalable
In this whitepaper learn how automated security testing can provide a simple and scalable way to protect your web applications.