[ISN] Romanian Hacker Gets 21-Month Sentence for Breaching Subway˘s Point-of-Sale System

From: InfoSec News <alerts_at_private>
Date: Wed, 9 Jan 2013 02:23:54 -0600 (CST)
http://www.wired.com/threatlevel/2013/01/subway-hacking-scam/

By David Kravets
Threat Level
Wired.com
01.08.13

A Romanian national is being sentenced in the United States to 21 months 
in prison for his role in a successful plot to hack customer 
credit-card-processing systems at more than 150 Subway restaurants and 
50 other unnamed retailers.

In all, four Romanian hackers compromised the credit-card data of more 
than 80,000 U.S. customers and used the data to make millions of dollars 
in unauthorized purchases, according to a 2011 federal indictment. 
(.pdf) Cezar Butu was handed a nearly two-year-term Monday in a New 
Hampshire federal court after pleading guilty in September to his role 
in the scam.

> From 2008 until May 2011, the four are accused of hacking into more
than 200 point-of-sale (POS) systems in order to install a keystroke 
logger and other sniffing software that would steal customer credit, 
debit and gift-card numbers. The hackers also placed backdoors on the 
systems to provide ongoing access.

The hackers allegedly scanned the internet to identify vulnerable POS 
systems with certain remote desktop software applications installed on 
them, and then used the applications to log into the targeted POS 
system, either by guessing the passwords or using password-cracking 
software.

[...]


______________________________________________
Visit the InfoSec News Security Bookstore
Best Selling Security Books and More!
http://www.shopinfosecnews.org 
Received on Wed Jan 09 2013 - 00:23:54 PST

This archive was generated by hypermail 2.2.0 : Wed Jan 09 2013 - 00:23:29 PST