Feeds

Men pocket $1.5m in alleged ATM skimming spree

Feds charge men with aggravated ID theft

Beginner's guide to SSL certificates

Four men have been charged with stealing $1.5 million from banks by using electronic devices to secretly record personal identification numbers as customers entered them into automatic teller machines and other gear.

Most of the skimming devices used in the 14-month spree involved the use of fraudulent pads that customers use to enter their account PINs before engaging in a transaction with a teller. According to an indictment filed in federal court Monday, the men surreptitiously replaced PIN pads in at least seven banks in Manhattan, Chicago and the Miami area with identical-looking devices that recorded confidential data each time they were used. The compromised PIN pads were equipped with the ability for the stolen data to be accessed remotely.

The men also placed skimming devices on the card readers of automatic teller machines located in bank vestibules, according to the 14-page indictment. The two banks targeted were Citibank and JPMorgan Chase, prosecutors said.

After obtaining the confidential account information, the men “then encoded the stolen account information onto the magnetic stripes of blank plastic cards, such as store gift cards” and used the counterfeit cards to make unauthorized withdrawals from the accounts that corresponded to the purloined information. In all, the men pocketed at least $1.5 million in the scheme, which lasted from March 2010 to May, prosecutors said.

The indictment names Mihail Draghici, Ionel Dedulescu and Laurentiu Mugurel Manta, who were identified as citizens of Romainia. It also names Didi Theodor Ciulei, whom prosecutors said was a citizen of Austria. Ciulei and Manta were arrested on May 29 in Chicago. Draghici and Dedulescu were arrested in December at Miami International Airport while attempting to board an international flight.

All four are charged with one count each of conspiracy to commit bank fraud, conspiracy to commit access device fraud, and aggravated identity theft. Draghici and Dedulescu are additionally changed with bank fraud. If convicted, Draghici and Dedulescu face a maximum of 69 years in prison; Ciulei and Manta face a maximum of 62 years. ®

Protecting users from Firesheep and other Sidejacking attacks with SSL

More from The Register

next story
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
Jihadi terrorists DIDN'T encrypt their comms 'cos of Snowden leaks
Intel bods' analysis concludes 'no significant change' after whistle was blown
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
Microsoft to patch ASP.NET mess even if you don't
We know what's good for you, because we made the mess says Redmond
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
prev story

Whitepapers

Providing a secure and efficient Helpdesk
A single remote control platform for user support is be key to providing an efficient helpdesk. Retain full control over the way in which screen and keystroke data is transmitted.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.