World’s biggest online fraud – Bank loses $1.1m

250 customers of a Swedish bank have become a victim of the world’s biggest online fraud (as described by Swedish media). The attack took place over three months, which involved a trojan, known as haxdoor.ki, and the fraudesters have stolen around 8m kronor ($1.1m; £576,000) from account holders at Swedish bank Nordea. This is how it happened:

Victims were duped into downloading the program after receiving an email, purporting to come from the bank, encouraging them to download anti-spam software.

Once installed the trojan monitored the PCs’ online activities.

“It listens for key web addresses, in this case the Nordea bank address,” said Greg Day, security analyst at McAfee.

When a user navigated to the Nordea bank login page, the trojan would kick into action, saving the customers login details. It then displayed an error message asking them to resend the information.

With two access codes the criminals could transfer money from the customer’s accounts.

Posted by Niranjan on January 20th, 2007 in News |
1 Star2 Stars3 Stars4 Stars5 Stars (1 votes, average: 5.00 out of 5)
Loading ... Loading ...
You might be interested in these as well:

2 Responses to 'World’s biggest online fraud – Bank loses $1.1m'

Subscribe to comments with RSS or TrackBack to 'World’s biggest online fraud – Bank loses $1.1m'.

  1. Rootprotect said,

    on January 22nd, 2007 at 7:58 pm

    I also came to know about this. But can you tell me more about Haxdoor and how they could have prevented this from happening

  2. Niranjan said,

    on January 23rd, 2007 at 1:57 pm

    You can find more details about haxdoor.ki here. To prevent such incidents the users need to be educated and made aware of the phishing, spam, virus, worms etc…

Post a comment