[ISN] Security Researchers Uncover 70GB of Financial Data Stolen by Botnet

From: InfoSec News <alerts_at_private>
Date: Tue, 5 May 2009 02:13:08 -0500 (CDT)

By Brian Prince

Researchers at the University of California, Santa Barbara, say they 
seized control of the Torpig botnet for 10 days earlier in 2009 and 
uncovered 70GB worth of financial data, from credit card numbers to bank 
account credentials. Torpig, also known as Mebroot and Sinowal, has been 
called the stealthiest rootkit in the wild by security vendor Prevx.

Researchers at the University of California, Santa Barbara, have 
published a paper saying they turned up a treasure trove of stolen data 
after seizing control of a notorious botnet.

The team of researchers hijacked the Torpig botnet, (PDF) which they 
linked to the theft of some 10,000 bank accounts and credit card numbers 
during a 10-day period. According to the researchers, the compromised 
bots were used by cyber-thieves to steal as much as 70GB of data worth 
millions during that time frame.

Torpig, also known as Sinowal and Mebroot, has been dubbed by security 
vendor Prevx the "stealthiest rootkit in the wild today." Just recently, 
the group behind Torpig's proliferation updated the malware to make it 
even harder to detect.


LayerOne 2009, Information Security for the discerning professional. 
May 23-24 2009 @ The Anaheim Marriott in Anaheim, California 
Visit http://layerone.info for more information
Received on Tue May 05 2009 - 00:13:08 PDT

This archive was generated by hypermail 2.2.0 : Tue May 05 2009 - 00:25:45 PDT