Slashdot Mirror

← Back to Stories (view on slashdot.org)

One Million IP Addresses Used In Brute-Force Attack On A Bank (softpedia.com)

Posted by EditorDavid on from the million-IP-march dept.

Cisco says in just one week in February they detected 1,127,818 different IP addresses being used to launch 744,361,093 login attempts on 220,758,340 different email addresses -- and that 93% of those attacks were directed at two financial institutions in a massive Account Takeover (ATO) campaign. An anonymous reader writes: Crooks used 993,547 distinct IPs to check login credentials for 427,444,261 accounts. For most of these attacks, the crooks used proxy servers, but also two botnets, one of compromised Arris cable modems, and one of ZyXel routers/modems. Most of these credentials have been acquired from public breaches or underground hacking forums. This happened before the recent huge data breaches such as MySpace, LinkedIn, Tumblr, and VK.com.
It's apparently similar to the stolen-credentials-from-other-sites attack that was launched against GitHub earlier this week.

4 of 50 comments (clear)

  1. 3 backdoors? by Anonymous Coward · · Score: 4, Insightful

    How incompetent do you have to be as a company to have THREE backdoors in your own router, intentional or accidental....

  2. Re:Internet of Thieves by DaMattster · · Score: 3, Insightful

    This is why self-driving vehicles are a bad idea! One good penetration could turn a 80,000 lb semi into a lethal weapon.

  3. Re:One Million is nothing by Imrik · · Score: 3, Insightful

    First, you should recheck your numbers. Second, Obama called it treasonous when Bush did it.

  4. Re:I'm surprised this isn't happening more often by Anonymous Coward · · Score: 2, Insightful

    SO lets see. You are not saving energy by keeping a system on 24/7, you are spending more money on power and cooling than you would if you put that computer in a colocated datacenter (I have ran the numbers more than enough times, I'm using typical residental power rates of 9cents/kWhr). Second, having physical access to your servers doesn't increase security. Your 5 pin tumbler lock is no match to an advanced lockpick set compared to the IDing, fingerprinting, and biometric scanning most datacenters put you through. Finally, the corporation can sweet talk the HOA, your local police, and ISP into redirecting, restricting, or rejecting packets destined to or from your server.

    Do yourself a favor, either host in a datacenter somewhere or host at home. But don't fool yourself into thinking you are more secure, saving money, or run your own "cloud" on a single piece of hardware. You are doing none of the above.