Multiple banks to be exact, over the last two years, by an unknown but very organized group.
The bank’s internal computers, used by employees who process daily transfers and conduct bookkeeping, had been penetrated by malware, through social engineering/phishing attacks, that allowed cyber-criminals to record their every move. The malicious software lurked for months, sending back video feeds and images that told a criminal group how the bank conducted its daily routines.
Hackers send email containing a malware program called Carbanak to hundreds of bank employees, hoping to infect a bank’s administrative computer.
ATMs were even compromised and programmed to spit out money.
Then the group impersonated bank officers, not only turning on various cash machines, but also transferring millions of dollars from banks in Russia, Japan, Switzerland, the United States and the Netherlands into dummy accounts set up in other countries.
Kaspersky Lab says it has seen evidence of $300 million in theft through clients, and believes the total could be triple that.