Experts at SecureWorks have bumped into what seems to be a considerable identity theft ring making use of ultra-modern Trojan code in order to pilfer confidential data from thousands of infested computer systems in the U.S. The Trojan, which links to a server in Russia, seems to have up to now stolen info from over 5,200 home PCs with 10,000 account records.
The records recovered consisted of account numbers and passwords from clients of a host of the top international label banks and financial services firms (more than 30 banks and credit unions were represented), the top US retailers, and the leading online retailers.
Don Jackson, a security researcher at SecureWorks, an Atlanta-based managed security service provider said,
The stolen data also contained numerous user accounts and passwords for employees working for federal, state and local government agencies, as well national and local law enforcement agencies. The stolen data also contained patient medical information, via healthcare employees and healthcare patients, whose username and passwords had been compromised via their home PC.
In an enthralling detailed explanation posted online, SecureWorks researcher Don Jackson maintained that how the Trojan (named Gozi) was reverse-engineered by him and he detected it back to a Russian mothership server that included info and employee login info for confidential government and law enforcement applications.
