Wednesday

13th Dec 2017

Cyber criminals steal millions from EU banks

  • Fraudsters initiated transfers totaling €35 million from 5,000 Dutch business accounts based in two banks in March. (Photo: UK Ministry of Defence)

Cyber attacks have siphoned off at least €60 million from personal and business accounts in 60 banks located in Europe, the United States, and Latin America.

Security firms Guardian Analytics and McAfee published the findings in a joint report called "Dissecting Operation High Roller" on Tuesday (26 June).

Thank you for reading EUobserver!

Subscribe now for a 30 day free trial.

  1. €150 per year
  2. or €15 per month
  3. Cancel anytime

EUobserver is an independent, not-for-profit news organization that publishes daily news reports, analysis, and investigations from Brussels and the EU member states. We are an indispensable news source for anyone who wants to know what is going on in the EU.

We are mainly funded by advertising and subscription revenues. As advertising revenues are falling fast, we depend on subscription revenues to support our journalism.

For group, corporate or student subscriptions, please contact us. See also our full Terms of Use.

If you already have an account click here to login.

High-balance accounts in Italy, Germany and the Netherlands were the initial targets of the attacks before they spread out to the Americas.

The experts say at least €2 billion could have been stolen if the fraud campaign had demonstrated the same level of success against accounts based in The Netherlands.

In March alone, fraudsters initiated transfers totaling €35 million from 5,000 Dutch business accounts based in two banks.

The Guardian Analytics and McAfee study identified 60 servers processing thousands of attempted thefts that initially targeted consumers before moving onto businesses. Every class and size of financial institution was targeted.

In Italy, the accounts targeted held on average between €250,000 to €500,000. Hackers introduced a code in malware that transferred either a fixed percentage or a relatively small fixed amount onto a pre-paid debit card or bank account.

The system was able to bypass, in less than 60 seconds, physical authentication checks such as the smartcard reader common in Europe.

Account holders introduce or swipe their cards in the smartcard to generate security codes and pin numbers to access their accounts online.

"The defeat of two-factor authentication that uses physical devices is a significant breakthrough for the fraudsters. Financial institutions must take this innovation seriously, especially considering that the technique used can be expanded for other forms of physical security devices," say the researchers.

The same system of automated attacks in Italy then began to appear in Germany in January. Nearly €1 million was taken from a total of 176 accounts with average account balances nearing €50,000. The money was transferred to mule accounts in Portugal, Greece, and the United Kingdom.

In unrelated events also on Tuesday (26 June), a US sting operation arrested 24 people in the United States and abroad for buying and selling stolen credit card information.

The scam and thefts occurred in the United States, Canada and 11 European countries, reports the AFP.

Six people were arrested in the United Kingdom, two in Italy, and one each in Bulgaria, Germany and Norway.

The European Commission, for its part, says around one-third of EU citizens were banking online in 2010. The figure has most likely increased since.

It says that people's bank credentials are being sold traded by criminals in Europe for around €60 per account holder, and credit cards for as little as €1.

A European cyber crime centre should become operation in January 2013.

The centre, housed in the premises of Europol in The Hague, will be tasked to identify organised cyber-criminal networks and prominent offenders.

Hackers stole Van Rompuy's emails

Hackers last summer raided the emails of EU Council chief Herman Van Rompuy and 10 other senior EU officials.

Romania wants EU signal on Schengen membership

Bucharest expects other member states to decide on its accession to the passport-free area before it takes the rotating EU presidency on 1 January 2019 - amid criticism of a controversial new justice reform.

Germany says China using LinkedIn to recruit informants

Germany's spy agency says the Chinese state is trying to recruit high-ranking German officials via social media outlets like LinkedIn. It accused Chinese intelligence of setting up fake profiles to lure them into becoming informants.

Germany says China using LinkedIn to recruit informants

Germany's spy agency says the Chinese state is trying to recruit high-ranking German officials via social media outlets like LinkedIn. It accused Chinese intelligence of setting up fake profiles to lure them into becoming informants.

News in Brief

  1. MEPs vote to allow phosphate additives in kebabs
  2. Babis government sworn in in Czech Republic
  3. Russia looks to crypto-currencies to evade EU sanctions
  4. Juncker embroiled in Luxembourg wire-tapping trial
  5. Kurz close to forming new Austrian right-wing government
  6. Ministers reach deal on fish quotas but overfishing continues
  7. UK parliament to vote on right to veto final Brexit deal
  8. French government rules out Corsican autonomy

Stakeholders' Highlights

  1. ACCACFOs Risk Losing Relevance If They Do Not Embrace Technology
  2. UNICEFMake the Digital World Safer for Children & Increase Access for the Most Disadvantaged
  3. European Jewish CongressWelcomes Recognition of Jerusalem as the Capital of Israel and Calls on EU States to Follow Suit
  4. Mission of China to the EUChina and EU Boost Innovation Cooperation Under Horizon 2020
  5. European Gaming & Betting AssociationJuncker’s "Political" Commission Leaves Gambling Reforms to the Court
  6. AJC Transatlantic InstituteAJC Applauds U.S. Recognition of Jerusalem as Israel’s Capital City
  7. EU2017EEEU Telecom Ministers Reached an Agreement on the 5G Roadmap
  8. European Friends of ArmeniaEU-Armenia Relations in the CEPA Era: What's Next?
  9. Mission of China to the EU16+1 Cooperation Injects New Vigour Into China-EU Ties
  10. EPSUEU Blacklist of Tax Havens Is a Sham
  11. EU2017EERole of Culture in Building Cohesive Societies in Europe
  12. ILGA EuropeCongratulations to Austria - Court Overturns Barriers to Equal Marriage

Latest News

  1. Brits in EU-27 are uncertain, alone and far from protected
  2. 2018 fishing quotas agreed - but Brexit muddies waters
  3. Medical HQ to spearhead EU military push
  4. Facebook to shift ad revenue away from Ireland
  5. EU renews glyphosate approval, pledges transparency
  6. Romania searching for EU respectability
  7. Last chance for Poland to return property to rightful owners
  8. Commission attacks Tusk on 'anti-European' migrant plan