Huffpost Technology

Bank Cyber Attack Know As Project Blitzkrieg A Credible Threat: Report

Posted: Updated:

A potential cyber attack against 30 U.S. banks known as Project Blitzkrieg has been deemed a credible threat by a report released from the security software firm McAfee.

"There is much speculation whether Project Blitzkrieg is real or simply a creation of Russian law enforcement as a sting operation. Our analysis suggests it is authentic, though the timing of the fraudulent activity is unknown," the report states.

Word first broke of a mass fraud campaign against U.S. banks in September by way of a Russian language forum, according to the report. There is evidence, according to McAfee, of an early pilot program operated by the group believed to be behind the project: it's estimated that between 300 and 500 accounts in the U.S. have already been infected with the malware. No cases of fraud have yet been confirmed, the report notes, and the majority of the accounts are with investment banks.

Instead of targeting thousands of people, McAfee is predicting that the attackers will go after smaller, more select groups. Doing so would theoretically enable the attackers to transfer millions of dollars with a smaller number of infections, which means they'd be less likely to be detected by defense networks.

Ryan Sherstobitoff, who authored the report, explained to Bloomberg that the malware in question works by obtaining user names and passwords from victims and sending that information to a remote server. Sherstobitoff added that there's evidence the criminals are going through account balances in an effort to target people with the most money.

CNN reports that sources familiar with the study pointed to Fidelity, Charles Schwab, PayPal, Citibank, Wachovia, Wells Fargo and Capital One as being among the banks that may be targeted. Wells Fargo told the news outlet that they were preparing for what might happen.

"Security is core to our mission and safeguarding our customers' information is at the foundation of all we do," a Wells Fargo representative told CNN in a statement. "We constantly monitor the environment, assess potential threats, and take action as warranted."

Last fall, six U.S. banks including Bank of America, JPMorgan Chase, Citigroup, U.S. Bank, Wells Fargo and PNC were targeted by a cyber attack, but the incident led to disruptions of service on their websites.

Also on HuffPost:

Close
JPMorgan Whale Fail And Nine Other Big Bank Disasters
of
Share
Tweet
Advertisement
Share this
close
Current Slide

Suggest a correction

Around the Web

Massive bank cyberattack planned - Dec. 13, 2012

Threatened Cyber Attack on Banks `Credible,' McAfee Says

News bites: U.S. banks face risk of cyberattack

3 more major US banks report possible cyber attacks - Technology ...

Bank group warns of heightened risk of cyber attacks - Technology ...

Iran Wages Cyber War Against US Banks and Arab Energy Firms

Cyber Attacks on U.S. Banks Expose Vulnerabilities - Businessweek

Cyber Attack News, Photos and Videos - ABC News

Cyberattacks on 6 American Banks Frustrate Customers - NYTimes ...

Hackers Attack US Bank Website Again

 
From Our Partners