In Online forums, you will find the access data to 11'500 Internet accounts of 2200 Swiss cantonal banks-employees. The data leaks include private Log-in Details such as user names and passwords to Dating sites such as Badoo.com and Zoosk.com or betting providers such as Easybet.com or Viproomcasino.net. This shows an analysis of hacked user accounts, which are circulating over the last few years on the Internet. This information can make use of Cyber-Criminals, for example, compromising to read information about Bank employees, and to extort; or, to send mass E-Mails with malicious Code targeted at employees of a company.
The evaluated user data are collected by the Zurich-based security company Kaduu for two years, systematically and continuously supplemented. Part of the Log-ins and passwords are in the public hacker forums, where everyone can easily operate, partly in closed Online communities that are only a select few forums available to members. The whole spectrum of Bank employees is affected: from the Junior consultant, who is entered only in the Bank, up to a long-standing member of the Directorate.
For the analysis zkb searched for using E-Mail-address-extensions, first to employees of the 24 Swiss cantonal banks – for example ".ch" in the case of the Zürcher Kantonalbank . Hits were then compared automatically with the web service haveibeenpwned.com in order to eliminate double entries (for multi Box).
The result: Especially in the Romandie, the bankers make the Internet a less sharp separation between private and business communication. After the analysis of every fourth of the nearly 2000 employees of the Vaud cantonal Bank under the e-Mail address of his employer, the "bcv.ch" on the Internet, an account whose user has been leaked the name of part with the password already.
The Canton of Vaud cantonal Bank, has investigated the data in more detail. It indicates that 70 of the accounts listed the wrong E-Mail addresses that have never belonged to an employee of the Bank. About half of the remaining addresses were out of date. They were so employees would not already work for the Bank. Affected not to be so, 25 percent of the employees, but only 10 per cent. The Vaud cantonal Bank, says: "The BCV is dedicated to the fight against all kinds of Cyber-risks greatest attention, including the issue of the lists of stolen or geleakter E-Mail addresses."
A similarly high rate to show for it, besides the Canton of Vaud, the Geneva and the neuchâtel cantonal Bank. The Bank employees with the largest number of geleakter accounts sits in the Rhone-town and monitor major financial transactions of corporate clients. He comes to a total of 61 chopped private Internet accounts, and that will be a short Internet search, is still working at the Bank.
Slightly better in the German part of Switzerland. However, only slightly. In the case of the Zürcher Kantonalbank it is one of seven employees who has previously been a data leak affected. With over 5000 employees, about 700 of Zurich bankers.
The Zürcher Kantonalbank reported on request, that Cyber-security enjoy the highest priority. And: "The described issue is known and is observed by in-house experts on an ongoing basis." The list of affected employees, which was submitted to the house, did not comment on the Bank in Detail. Only so much: "The number of E-Mail accounts is not a snapshot, but represents an aggregated view over a longer period of time." About half of the employees are for the ZKB. What, didn't want to show the Bank.
to play, Interestingly, seems to be but neither the Size of the respective Canton nor the share of urban population is the decisive factor for the differences in the shares of the affected bankers. In Basel-city example, the value of which is five times lower than in the comparable city of the Canton of Geneva. Eyes due also to the comparison of the more rural Urner Kantonalbank with Zug or Appenzell cantonal banks. The URI, there is no single affected employees. The Appenzell come to 10, and the Zug-based on 52 hits.
For the IT security expert Thorsten Urbanski of the company Eset have to do with the differences most likely with the company's culture. He says: "Some of the digital threats to your business are more aware, other less." Employees in the Internet business and private E-mix Mails, Urbanski understand that part. He says: "If someone buys, for example, in the case of the airline Swiss for a business trip, a plane ticket and his business E-Mail address for the frequent flyer program is using, he does not want to switch at his next private holiday on the Private E-Mail."
illegal data trade is 160 billion Swiss francs value
What Urbanski has no understanding: If an employee for Online-Shops, betting websites or Dating sites, use your business E-Mail address and active during working hours. He says: "there is no excuse. As an employer, would seem to me the question of what these people are doing during working hours. Especially, if you understand what you do, if you to dubious websites or even illegal Websites, from the company computer."
in fact, employees who use their work E-Mail for private purposes, your employer and the Bank's customers and risks. Urbanski says: "Like Google and Facebook, the cybercriminals have discovered Criminals long ago the value of large amounts of data." In fact, you would do exactly the same as the Internet companies, only in an illegal way. You collect data from users, in order to reach them with targeted messages. Facebook and Google have to do with advertising messages; Cyber-Criminals are doing the same thing, only with malicious Computer Code, or false allegations, in order to plunder the accounts of Online banking customers.
The global illegal trade in user data, is extremely lucrative. According to estimates by IT-companies such as Bromium, the global sales in 2018 amounted to the equivalent of 160 billion Swiss francs. This is more than the entire gross domestic product of Hungary.
"Many companies are data, the trade with stolen Internet."Marc Ruef, a security expert at Scip.
data thieves have many ways to make a user account-Log-ins and passwords money. Marc Ruef, a security expert at the Zurich-based company Scip, currently observed an increase of the so-called brute force attacks. Cyber-Criminals hack into, for example, in the customer database of a Dating-Site, whose servers are less protected. The captured Log-ins and passwords you use to automate other services to log in. For example, in the case of more well-known Social Media services such as Facebook or Twitter, or in the Bank accounts of the same user. They assume that users have used the same Log-ins and passwords for other services. The attacker can use this procedure in a matter of seconds to check thousands of accounts.
Ruef says: "Many companies to play the trade with stolen Internet data." The security expert expects that the problems will increase, particularly in the case of the blackmail data from private Social try with compromised Media accounts. The Problem is, in principle, be difficult to get a handle on. The most success we have as a company to create and staff awareness of the very personal Details on the Internet in a controlled share.
Only on Wednesday, a German hacker has been convicted of fraud at a criminal court in Bellinzona to several years in prison for online. She was able to overcome with a so-called Phishing attack, all of the security hurdles of the respective financial institutions and customers of various cantonal banks, including Zurich, Thurgau, Obwalden Chancellery, Aargau and St. Gallen cantonal banks, remove 2.2 million Swiss francs.
In the vast majority of cases do not succeed to the authorities, the behind-the-men - and -women to court, let alone to identify them. It comes weekly to 50 to 150 large-scale Phishing attacks on Swiss companies. So many of the counts the number of Melani (Reporting and analysis centre of the Federation) in its latest situation report. The dark figure is probably much higher. For the first half of 2018, Melani noted in the latest report: "increasingly fraudulent calls in the case of companies, where the attacker than Bank staff expenses. The caller ask for the execution of payments or to need to Update the E-Banking carry out the will then be tested."
The accumulation of attacks on Online customer accounts, wanted to not asked to comment on Kantonalbank. You don't, and in the case of business use stated in unison, their employees clearly instruct business E-Mail addresses in the registration of Internet services as a user name for private purposes only if necessary. And: to use Each password only once. (Editorial Tamedia)
Created: 21.03.2019, 12:42 PM