In November 2008, with the US transfixed by a presidential election and a collapsing economy, a group of international hackers infiltrated the computer network of a major financial services company in what authorities describe as one of the most sophisticated attacks ever concocted.
Their work was both furtive and impressive: Around the time Barack Obama was securing his White House victory, the hackers entered RBS WorldPay servers, accessed prepaid payroll card numbers, cracked their encrypted PIN codes, raised the balances on the cards and distributed dozens of them to a team of people around the world.
Then, in the span of 12 hours around Nov. 8 of that year, the group hit 2,100 ATM terminals in 280 cities spanning the world, from the US to Russia and Italy to Japan. Prosecutors say they withdrew US$9 million — a haul that rivals 1,000 typical bank robberies in the US.
Despite the technical and international challenges of the case, US investigators believe they were able to trace the scheme back to its origin. On Friday, they brought one of the accused ringleaders from Estonia to Atlanta to face arraignment on several fraud charges — a rare appearance in US courts for an accused international hacker.
Sergei Tsurikov, 26, of Tallinn, Estonia, pleaded not guilty at his arraignment to conspiracy to commit computer fraud, computer fraud, conspiracy to commit wire fraud, wire fraud and aggravated identity theft.
FBI officials said in interviews that they weren’t so much drawn to the case by the dollar amount of the RBS heist, but by the coordination. It exemplified the international scope and increasing acumen of cyber attacks.
“As people become more technically proficient and get access to the Internet, we see this crime showing up in more and more places,” said Pat Carney, who supervised the RBS case at the FBI’s headquarters.
With such an increasing need for cyber defenses, the FBI has ramped up its focus, training 900 agents in how to handle such crimes. In the RBS case, they quickly mobilized a group of FBI experts on the topic to descend on Atlanta, Georgia, where RBS is based, and track down the culprits.
While US authorities have been able to crack down on cyber crimes originating in the US, the FBI has had to increasingly rely on foreign partners to restrict attacks coming from overseas, in places like Egypt, Turkey and Hong Kong. Federal officials praised authorities in Estonia for assisting in both the investigation and extradition in the hacker case.
The increasing scope of foreign attacks comes as college students around the world are focusing heavily on technology degrees only to emerge into a difficult job market with low pay, officials said.
“When you can’t find a legitimate job making big money, you find some way to make money,” said Colleen Moss, the head of the FBI’s Cyber Crime Squad in North Carolina. “There’s a lot of high-tech trained folks out there who either don’t have a job or aren’t making what they’d like to.”
The RBS case began when a 29-year-old Moldovan man, Oleg Covelin, found a vulnerability in the computer network run by RBS, the FBI said. He passed the details along to Tsurikov in Estonia, according to FBI officials, and he conducted “reconnaissance” to assess the vulnerability before sharing his findings with a colleague in Russia.
After breaking into the system, the team distributed 44 counterfeit cards to a network of “cashers” around the world.
Though the hackers attempted to cover their tracks, RBS noticed the activity and reported it to the FBI. They managed to trace the culprits, relying on cyber forensics, international banks and foreign authorities.
“What made this case different was the scope, the timing and the coordination,” said Doris Gardner, an FBI special agent who worked on the case. “It was very sophisticated.”
Tsurikov was indicted last year in the case along with Viktor Pleshchuk of St Petersburg, Russia, Covelin of Chisinau, Moldova, and three others from Estonia. The three leading suspects have been convicted in Estonia. In the US, they face up to 20 years in prison for wire fraud charges and between five and 10 years for computer fraud charges.
Chinese President Xi Jinping (習近平) is to visit Russia next month for a summit of the BRICS bloc of developing economies, Chinese Minister of Foreign Affairs Wang Yi (王毅) said on Thursday, a move that comes as Moscow and Beijing seek to counter the West’s global influence. Xi’s visit to Russia would be his second since the Kremlin sent troops into Ukraine in February 2022. China claims to take a neutral position in the conflict, but it has backed the Kremlin’s contentions that Russia’s action was provoked by the West, and it continues to supply key components needed by Moscow for
Japan scrambled fighter jets after Russian aircraft flew around the archipelago for the first time in five years, Tokyo said yesterday. From Thursday morning to afternoon, the Russian Tu-142 aircraft flew from the sea between Japan and South Korea toward the southern Okinawa region, the Japanese Ministry of Defense said in a statement. They then traveled north over the Pacific Ocean and finished their journey off the northern island of Hokkaido, it added. The planes did not enter Japanese airspace, but flew over an area subject to a territorial dispute between Japan and Russia, a ministry official said. “In response, we mobilized Air Self-Defense
CRITICISM: ‘One has to choose the lesser of two evils,’ Pope Francis said, as he criticized Trump’s anti-immigrant policies and Harris’ pro-choice position Pope Francis on Friday accused both former US president Donald Trump and US Vice President Kamala Harris of being “against life” as he returned to Rome from a 12-day tour of the Asia-Pacific region. The 87-year-old pontiff’s comments on the US presidential hopefuls came as he defied health concerns to connect with believers from the jungle of Papua New Guinea to the skyscrapers of Singapore. It was Francis’ longest trip in duration and distance since becoming head of the world’s nearly 1.4 billion Roman Catholics more than 11 years ago. Despite the marathon visit, he held a long and spirited
The pitch is a classic: A young celebrity with no climbing experience spends a year in hard training and scales Mount Everest, succeeding against some — if not all — odds. French YouTuber Ines Benazzouz, known as Inoxtag, brought the story to life with a two-hour-plus documentary about his year preparing for the ultimate challenge. The film, titled Kaizen, proved a smash hit on its release last weekend. Young fans queued around the block to get into a preview screening in Paris, with Inoxtag’s management on Monday saying the film had smashed the box office record for a special cinema