From Indiana to Russia, Ukraine, Turkey and the Czech Republic
Last modified on Friday, 20 June 2008 09:28
A bank server was compromised at 1st Source Bank in South Bend, Indiana on May 12th. When the bank discovered the server breach, the bank reportedly disabled all of its own ATM cards that were thought to be compromised. This past weekend, however, there were a flood of fraudulent ATM transactions occurring in places as far away as Turkey, Ukraine, Russia and the Czech Republic that appear to be linked to the server intrusion.
The breached server contained debit card transaction data belonging to customers of 1st Source and other financial institutions who used 1st Source ATMs. At least 200 consumers in Indiana who have accounts with 1st Source, Teachers Credit Union (TCU) and Farm Bureau Credit Union have reported fraudulent ATM activity that has occurred to their accounts since this past weekend. The majority of the ATM withdrawals were $200 to $300 each, or limited to the maximum amount of daily withdrawal on the account.
Data security and cybercrime are part of a global market for stolen credit card data and banking data. A security vendor, Finjan Inc, just released a report that a huge underground market exists for stolen credit and debit card data. The company claims that this information can often be purchased by doing a Google search and paying as little as $20 per stolen card.