The goal of this project is to make virtual world a safer and better place without child pornography, major computer crime and RIAA.
Login As
You can log in if you are registered at one of these services:
Security Bulletins
Latest Malware Updates

Infostealer.Posteal

02/26/2015

Downloader.Busadom

02/26/2015

Trojan.Ladocosm

02/26/2015

SONAR.SuspDocRun

02/25/2015

SONAR.SuspHelpRun

02/25/2015

Skimming Let Criminals Compromise Over 6 000 Bank Accounts

Skimming Let Criminals Compromise Over 6 000 Bank Accounts

US federal authorities announced charging two alleged leaders of a group that compromised bank accounts. According to the filing, they used skimming technology in order to record customers’ data who used ATM machines at banks in New York, New Jersey, Illinois, and Wisconsin.

The filing also claims that criminals, a.k.a. Gabor and Pintillie, were leaders of the scheme during April 2012 – December 2012. At least 9 more co-conspirators were engaged in the crime they installed the devices, Gabor obtained from Hungary, on the ATM machines. The devices secretly recorded information of the cards used in ATMs. Moreover, criminals managed to install hidden “pin hole” video cameras on the machines, which secretly taped PINs.

Having fixed the data, co-conspirators delivered the devices to Gabor, who used hijacked data to create new bank cards and withdraw funds from the victims accounts.

The skimming ring targeted clients of such banks as J. P. Morgan Chase and Capital One. While the scheme was active, criminals compromised over 6 000 bank accounts, made and attempted to make over approximately $3 million in unauthorized withdrawals.

Gabor, 30, allegedly a citizen of Denmark, and Pintillie, 32, a Romanian citizen, are charged with one count of conspiracy to commit bank fraud, which carries a maximum of 30 years in prison, one count of conspiracy to commit access device fraud a maximum of seven and one half years, and one count of aggravated identity theft with a mandatory minimum of two years in prison.

(c) Naked Security


Security Advisories Database

Remote Code Execution Vulnerability in Microsoft OpenType Font Driver

A remote attacker can execute arbitrary code on the target system.

07/21/2015

SQL Injection Vulnerability in Piwigo

SQL inection vulnerability has been discovered in Piwigo.

02/05/2015

Cross-site Scripting Vulnerability in DotNetNuke

A cross-site scripting (XSS) vulnerability has been discovered in DotNetNuke.

02/05/2015

Cross-site Scripting Vulnerability in Hitachi Command Suite

A cross-site scripting vulnerability was found in Hitachi Command Suite.

02/02/2015

Denial of service vulnerability in FreeBSD SCTP RE_CONFIG Chunk Handling

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Apache Traffic Server HTTP TRACE Max-Forwards

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in MalwareBytes Anti-Exploit "mbae.sys"

An attacker can perform a denial of service attack.

01/30/2015

Denial of service vulnerability in Linux Kernel splice

An attacker can perform a denial of service attack.

01/29/2015

Denial of service vulnerability in Python Pillow Module PNG Text Chunks Decompression

An attacker can perform a denial of service attack.

01/20/2015