FBI Investigates 'Sophisticated' Cyber Attack On JP Morgan, 4 More US Banks 98
Bruce66423 writes with news of an electronic attack believed to affect at least five U.S. banking institutions this month, including JP Morgan, now being investigated by the FBI. According to the Independent, The attack on JP Morgan reportedly resulted in the loss of “gigabytes of sensitive data” that could have involved customer and employee information. It is said to have been of a level of sophistication beyond ordinary criminals, leading to speculation of a state link. The FBI is thought to be investigating whether there is a connection to Russia. American-Russian relations continue to be fraught amid the crisis in Ukraine, with sanctions ramped up.
Bruce66423 asks "The quality of the attack, which appears to have led to 'gigabytes' of data being lost, is raising the prospect of a state being the source. The present culprit suggested is Russia... why the assumption it's not China — just because China isn't invading the Ukraine at the moment?" News of the attack is also at the New York Times, which notes Earlier this year, iSight Partners, a security firm in Dallas that provides intelligence on online threats, warned companies that they should be prepared for cyberattacks from Russia in retaliation for Western economic sanctions. But Adam Meyers, the head of threat intelligence at CrowdStrike, a security firm that works with banks, said that it would be “premature” to suggest the attacks were motivated by sanctions.
Which "other banks"? (Score:3)
.
Re: (Score:3)
Yeah, what evildoers, giving Russia a slap on the wrist for the petty offense of invading and taking over part of another country that had insolently decided to no longer be under Russia's thumb. Next up, the evil tyrants in American and Europe will send Putin a sternly worded letter! Maybe he won't even get a Christmas card from Biden this year!
See: US to sanction Russia over annexation of Virginia [wikia.com]
Re: (Score:1)
You mean like how the US carved Panama out of Colombia, or Kosovo out of Serbia? Or the rebelliions they supported in Lybia, Syria, and god knows where else. I'm not even including just taking over a country lock,stock and barrel, or just bombing it back to the stone age here.
I even remember the Russians warning the US 5-10 years ago that their decision to violate another countries soverignity and international law will bite them in the ass down the line. And lo-and-behold, here we are.
I don't mind that the
Re: (Score:2)
Still puzzled over this supposed association of sophistication and state sponsored. I don't even remember when I last saw any government do anything that was all that smart.
Re:When they don't blame the Chinese ... (Score:4, Insightful)
Like the virus that attacked Iran's nuclear centrifuge?
Re: (Score:1)
It raises the question. Stop it.
For fucks sake it doesn't do that, either. That's not the question. There is no suggestion that the attackers simply lumbered across the data by going to http://www.chase.com./ [www.chase.com] They probably (based on the patterns of most recent attacks) used spear phishing across a huge section of the employee population, then individually targeted each mark that fell into the trap for maximum leverage on gaining external access.
Re: (Score:2)
In the US it should read: "I am 280kg and have severely clogged arteries, which begs the question: why have I not bought a mobility scooter ?"
We haven't quite caught up with the rest of the world and switched to metric units. So instead of 280kg, it's 617 lbs.</pedant>
Re: (Score:2)
You mean like my bank account statement, balance, my sign in, you know, things almost every American today access everyday from their banks? I don't know about you, but, I access those things (data) via the internet facing servers provided for me by my bank.
Fear mongering fearfully old (Score:3, Insightful)
Yawn
same old...same old...
Private "cybersecurity" firm reports data breach. Lots of data transferred. Must be "state" actor APT! But who? China? Russia? Who is US government/media currently demagoguing against? Maximum fear factor achieved!
Re: (Score:3)
Must be "state" actor APT! But who? China? Russia? Who is US government/media currently demagoguing against? Maximum fear factor achieved!
They forgot North Korea this time - must be an off-cycle.
You didn't need to go AC on this - we're all thinking the same thing. Are they just getting so much worse at the propaganda or are we finally wisening up?
Re: (Score:2, Interesting)
old but somewhat effective (Score:2)
The fear and war mongering is coming from all fronts currently. For a decade it was mostly middle east. Now they are ratcheting up the propaganda against Russia. Partially due to people realizing that the US is training and arming the "terrorists" in the middle east causing many of the problems, and partially due to needing a bigger threat. So yes, people are getting wise to the games. John Kerry and his constant screaming for a white cat has become blatantly obvious.
Until recently China and Japanese s
Re: (Score:1)
Sorry, but I have to call you out on that last. I work for a third party that holds much data for Chase. They aren't slacking on security. They audit and poke us all the time, to make sure stuff like this is encrypted at rest. My first thought is an inside job, before all the conspiracy theories. That's the easiest way in. Just bribe some sysadmin, or find one to blackmail.
Re: (Score:2)
How many times will we hear a claim of "Russia invaded the Ukraine" and have that proven false before people ignore it completely?
So, just out of curiosity, what do you get out of spinning your particular flavor of nonsense? Who benefits from you trying to convince people that - despite what they can see with their own eyes - Russia didn't just annex Crimea? That columns of Russian armor with their insignia painted over didn't just roll across the border into southeast Ukraine? Your contention has to be that those events didn't actually happen, despite untold thousands of witnesses pointing out the exact opposite. So, what's your poi
Re: (Score:2)
Russia didn't just annex Crimea?
Crimea voted with a 90% margin to annex from Ukraine, this was not "Russia" doing anything. This vote happened after a bloody and violent coup in Ukraine. The voting process has not been demonstrated to be incorrect by anyone, the fact that they annexed at all is what is questioned.
If you want to play the game and cry foul, you need make sure you account for US involvement in Libya, Egypt, and every other country where we have cried foul after a vote goes against US interests. This is not something recen
Re: (Score:1)
Re: (Score:2)
Honest question from a non-USian (Score:2)
Why does the FBI get involved? is it because the events span multiple states, or because the banks have so much clout? If this had happened to google or microsoft, for example, would the FBI get involved?
Re: (Score:1)
The FBI is an agency of the Department of Treasury. This sort of thing is (supposed to be) their main job.
Re: (Score:2)
Re: (Score:2)
Then why aren't the Secret Service all up in this?
Slackers.
Re: (Score:2)
You're thinking of the Secret Service.
Re: (Score:2)
Re:Honest question from a non-USian (Score:4, Informative)
If it crosses state lines, and/or international borders, then the FBI gets involved. Also, if the crime is highly technical, and requires specific expertise, the FBI often gets involved as well (since the police dept in city/state X might not have the same level of capability).
Re: (Score:2)
The FBI also uses the excuse that the crime *might* have crossed a state line or border. I expect at some time in the future they will add, "The crime may have affected interstate commerce or involved items or materials that may have crossed a state line."
Re:Honest question from a non-USian (Score:4, Interesting)
Why does the FBI get involved? is it because the events span multiple states, or because the banks have so much clout? If this had happened to google or microsoft, for example, would the FBI get involved?
The FBI will exercise its power whenever it can, but almost always only if oligarchs are involved. Sure, they can't avoid the bad PR of ignoring a kidnapping, but if Grandma's money gets stolen because her paypal account is hacked, then don't expect her to get any help - only the institutions that are politically connected yet could afford their own investigation get that kind of help (while Grandma is essentially helpless). They'll excuse it by saying "oh, we can only help if the dollar amount exceeds $X because we have limited resources" but what that really means is they only help rich enough people, who (shocker) also tend to be the ones capable of making campaign donations. The help is means-tested, but not in the way one might expect.
In various roles I've heard from local chiefs of police who are trying to help out various citizens, just because there is no other option for them. It's not uniform at all, but investigating online crimes is not what those guys have training for.
If somebody here has had FBI help for small-dollar crimes where that was their only option, then I'd love to hear counterexamples.
Re: Honest question from a non-USian (Score:3)
That's right the police are too busy training for paramilitarized riot control and shooting unarmed poor people to care about online stuff.
Re: (Score:2)
but if Grandma's money gets stolen because her paypal account is hacked, then don't expect her to get any help
But if Grandma has her checking or retirement account with Morgan/Chase, she's being helped right now, by the agency you say won't help her.
Re: (Score:1)
The FBI gets involved because they have more clout overseas to get the perpetrator arrested. The organization hacked by itself doesn't have much. And the FBI has more potential access to NSA data to find the perp in the first place. The FBI regularly gets involved in wire fraud and bank related cases that cross borders. They have a cyber investigation division for this sort of thing.
Like Bill said though, grandma's $20,000 life savings whisked off to Nigeria isn't likely to raise
Re: (Score:2)
Re: (Score:2)
If somebody here has had FBI help for small-dollar crimes where that was their only option, then I'd love to hear counterexamples.
Quite a few years ago, I found out that the FBI will not move if the dollar value is below $5,000. I am sure that point has gone up, not down.
Re: (Score:3)
Why does the FBI get involved? is it because the events span multiple states, or because the banks have so much clout? If this had happened to google or microsoft, for example, would the FBI get involved?
Simply put, the FBI is the investigator of last resort. Local law enforcement (even in large cities like NYC where JPMC is based) are woefully ill-equipped to investigate this sort of thing.
Re: (Score:1)
There is no group of people on the planet known as USians. Please stop using this term.
At this point... (Score:2)
I can only assume the NSA has become self-funding, and is doing so by hacking banks.
Re: (Score:2)
Nah, that's NCIS's job. Abby and Probie McGee will handle it!
Comment removed (Score:5, Insightful)
MOD THIS UP (Score:1)
This is the ACTUAL summary of the article. At the very least, this is the summary that *should* be posted to the Slashdot, that translates the shit-speak the media writes into technical jargon that Slashdot readers should expect from "news for nerds".
Otherwise Slashdot is a mere shill for other crap media with their crap reporting with zero journalistic integrity. Facts be damned, protect the status quo.
Re: (Score:2)
Welcome to the late 90s.
Re: (Score:3)
There is actually a deeper issue than corporate security competence.
Imagine that a bunch of soldiers stormed the front door to their datacenter with APCs, tanks, and artillery support. They then removed hard drives and proceeded across the border to some other country. Would you consider this a bank security problem?
Banks don't have this problem because the government provides physical security against these kinds of threats. Sure, the bank is expected to lock the doors and have some guards, but they are
Please stop calling it... (Score:1)
Re: (Score:2)
"The Netherlands" is a country and it's correct to include the "The" (when naming it in English, at least).
Re: (Score:2)
"The Netherlands" is a country and it's correct to include the "The" (when naming it in English, at least).
Irrelevant, because we are not talking about The Netherlands [wikipedia.org]
.
Re: (Score:2)
slimshady76 thought it was relevant to compare to Italy or France; I was merely refuting his argument. Complain about it to him.
Re: (Score:2)
Sorry I couldn't hear you over the aftershocks of Mt. Gox's collapse.
Sophisticated my ass (Score:2)
I'll bet all my credit balance that they probably learned to use a malware generator right to just PDFed the clicktomaniac back-office, and that even if the paydata was air-gapped they're leaking USB drives all over the place.
A firewall which is more than just an occasional inconvenience has to stop any data which it can't compare to its list of secrets which may not be leaked. - That is at least what one of the firewall's tasks used to be, but none which did this were sold, apparently because they were ju
Re: (Score:2)
Weird assumption that you could ditch the air gap, AC... This firewall is for the data that must inevitably bridge the gap. You only allow a few protocols through it and you know how those protocols behave. The list of secrets isn't one of eternal taboos, but one which is used to keep track of when to allow through what. - It's not like the grand gate FW at your network perimeter.
To get data through it you should need to know what the FW expects to see. Assuming an attacker somehow gets arbitrary execution
Sophisticated attack? (Score:1)
Why State? (Score:2)
crime syndicates are just as resourceful, if not more so, than state actors. To assume that it is a state actor because you did not think of the attack vector first is pretty dumb. in fact, trying to assert any attribution to cybercrime/intelligence is dumb.
Russia? Really? China or France Maybe? (Score:2)
Russia = bogeyman (Score:2)
'Sophisticated' Cyber Attack On JP Morgan? (Score:1)
A practical question (Score:2)
What if such cyber attacks are a form of misdirection or rather click-bait? Here's the scenario: launch a cyber attack on a bank but you're really not interested in any data you might get or rather the attack makes the target think that you're after data. The target then tells its customers to change their passwords. It's only then that the attacker gets what their after i.e. account holders' NEW passwords.
Nearly all hacks are "sophisticated." (Score:2)
At least that's the impression I get by reading the news. I can't remember the last time I heard an attack described as "simple" or "straightforward." It's never "the hackers just tried a bunch of words until one of them worked," or "turns out that if you type '); then a computer will often happily do whatever you tell it," or "if you give it a very long list of letters, sometimes the computer will start doing whatever you tell it." No, it's "the hackers used a sophisticated technique to plow through lay
Insider Threat will not be eclipsed. (Score:2)
When speaking about the very banks that helped cause the global financial meltdown of 2008, I seriously doubt any attack could ever pose a larger threat than the insider threat that runs Too Big To Fail.
Inside Perspective (Score:1, Informative)
We work with JPMorgan. We host hundreds of terabytes of sensitive data for them.
They take information security more seriously than any other organization that we work with, and we work with a number of Fortune 50 corporations, tech companies, and the United States government.
If they are getting hacked, it is not due to a lack of effort or competence on the part of their risk management and security teams. All of the common complaints that get voiced here about companies not taking security seriously, abou
Re: (Score:1)
We work with JPMorgan. We host hundreds of terabytes of sensitive data for them.
They take information security more seriously than any other organization that we work with, and we work with a number of Fortune 50 corporations, tech companies, and the United States government.
If they are getting hacked, it is not due to a lack of effort or competence on the part of their risk management and security teams. All of the common complaints that get voiced here about companies not taking security seriously, about companies not spending money on security, about PHBs not getting security, are not applicable to JPMorgan. Those people get it. I do not say that lightly. There are plenty of equally large financial institutions and organizations with similar amounts of resources who do not spend even a quarter of the effort on securing their data that JPMorgan does.
As a client, they are a serious pain the ass to work with. But at the end of the day, their security controls and risk management processes are heavily weighted towards security at all costs, ease of use / access be damned.
I have a similar relationship with JPMC. However, just because they force their vendors to eat the dog food doesn't mean that they are as well...