Hackers (Or Pen-Testers) Hit Credit Unions With Malware On CD 205
redsoxh8r writes "Online criminals have taken to a decidedly low-tech method for distributing the latest batch of targeted malware: mailing infected CDs to credit unions. The discs have been showing up at credit unions around the country recently, a throwback to the days when viruses and Trojans were distributed via floppy disk. The scam is elegant in its simplicity. The potential thieves are mailing letters that purport to come from the National Credit Union Administration, the federal agency that charters and insures credit unions, and including two CDs in the package. The letter is a fake fraud alert from the NCUA, instructing recipients to review the training materials contained on the discs. However, the CDs are loaded with malware rather than training programs." According to the linked article, the infected CDs were (or at least may have been) part of a penetration test, rather than an actual attack.
Training (Score:4, Funny)
Did the penetration testing "training" CDs at least provide a helpful "Lesson Number 1: Never do what you just did." video?
Re:I actually saw one of these.... (Score:5, Funny)
Mail fraud, financial fraud, computer fraud and forgery. What have I missed?
We're on Slashdot. At least insult them properly: they probably use Windows.
Re:I actually saw one of these.... (Score:5, Funny)
Actually, mimicking government incompetence is a necessary step to enhancing its value as a forgery.
Re:I actually saw one of these.... (Score:5, Funny)
Doesn't AOL give out 10-month CDs for free?
Re:Another scam (Score:5, Funny)
Yep, trivial.
Years back (about 1995 or so) I configured my MTA to provide "president@whitehouse.gov" as the "From" address when I sent an obvious prank to a co-worker. He replied (!) cussing me out and joking, "I'm going to kill you". You can imagine he quickly realized what he'd done and sent another email explaining himself. Who knows if he managed to get himself on an FBI watchlist or not. ;)
Re:Wait, I've heard this one before. (Score:4, Funny)
> Credit unions make great financial sense but only the largest ones have the
> kind of IT and security resources most of us associate with a bank.
Considering what the banks accomplish with those resources, I'll take the credit unions.
Pen testers (Score:2, Funny)
I'm in favor of it; I think that banks really need pen testers.
Their pens usually are broken off of those little chain things, and when you do find one that's still attached, it doesn't write.
Re:Another scam (Score:2, Funny)
Re:Mailing is to customers (Score:2, Funny)
This bout of reasonable discourse brought to you by: Slashdot
Shoes for Turds, Stuff that Splatters.
Re:Windows Autorun (Score:3, Funny)
Re:Where are the jokes? (Score:2, Funny)
Re:Training (Score:2, Funny)