UK: Barclays cybertheft involved cooperation of employee
Steve Gold has an update to a breach noted previously on this blog involving a gang that transferred funds from some Barclays customers’ accounts. At the time, it was suspected that one of the gang members had posed as an engineer to install a KVM device that enabled them to access the bank’s computer and transfer funds. Now it appears that they had inside help. Gold reports:
In a trial at Southwark Crown Court this week, it emerged that a bank employee is alleged to have helped the gang attach a KVM (keyboard/video/mouse) adapter to the bank’s PC, so allowing members of the gang to access the computer remotely.
The gang is then alleged to have uses the employee’s credentials to make a total of 128 transfers from six business accounts.
Read more on SC Magazine.