By Jeremy Kirk and Robert McMillan
IDG News Service
December 22, 2009
Citigroup and a federal law enforcement source on Tuesday refuted a
claim that the bank's customers lost millions of dollars in an advanced
cyber heist over the summer, leaving lingering questions over details of
the alleged attack.
According to a report in Tuesday's Wall Street Journal, the Federal
Bureau of Investigation (FBI) is investigating the theft of tens of
millions of dollars from Citibank using malicious software created in
A source within federal law enforcement who declined to be identified
said the Wall Street Journal story was inaccurate and appears to have
confused a known 2007 hack of Citigroup-branded automated teller
machines with a long-running criminal effort to hack online banking
customers and move money out of their accounts.
"They've screwed up so many different things," he said. The FBI had no
A second banking fraud investigator, who also asked not to be identified
because of his ongoing investigations, agreed with this assessment. The
long-running effort to hack online banking by installing
password-stealing Trojan horse programs known as Zeus and Clampi has
affected many banks, but it has compromised customers' PCs and not the
banks themselves, he said.
Did a friend send you this? From now on, be the
first to find out! Subscribe to InfoSec News