There is an article in the WSJ, Hackers Stole IDs for Attacks, which discusses the role ID theft played in the Georgian government web site attacks last year.

“Mr. Bumgarner traced the attacks back to 10 Web sites registered in Russia and Turkey. Nine of the sites were registered using identification and credit-card information stolen from Americans; one site was registered with information stolen from a person in France.”

I have my own data point to share on this attack trend. My credit card number was used fraudulently to register 4 web sites from separate ISPs last Monday. The fraud detection was flagged at one of the ISPs, Laughing Squid Web Hosting. Thanks guys! This was because the fraudsters were sloppy and tried to register an invalid domain name as the name of their web server, Laughing Squid gave me a call and I was able to get my card cancelled and the other ISPs notified within a few hours. Interesting that the other ISPs didn’t notice.

It is easier to steal credit card info from merchants and processors than it is to compromise web servers to build botnet attack and control. There is no physical shipment when you order web server hosting. ISPs need to be more rigorous in their fraud detection.

Poor security at sites processing credit cards can do more damage than hurt individuals, merchants, or banks financially. It is a risk to the internet because the purchasing power of the credit cards can be used to fund attacks.

Veracode Security Solutions
Security Alternatives
Security Threat Guides

About Chris Wysopal

Chris Wysopal, co-founder and CTO of Veracode, is recognized as an expert and a well-known speaker in the information security field. He has given keynotes at computer security events and has testified on Capitol Hill on the subjects of government computer security and how vulnerabilities are discovered in software. His opinions on Internet security are highly sought after and most major print and media outlets have featured stories on Mr. Wysopal and his work. At Veracode, Mr. Wysopal is responsible for the security analysis capabilities of Veracode technology.

Comments (1)

RR | August 17, 2009 2:05 pm

Data leaks, that's what I think is going on. I think is easier for cyber-criminals to contact somebody inside an organization that has interesting data and offer money or threaten him for a copy of the accounts database that contains all the identities that they can steal and use of other purposes.

A different version of this, is what I think is going on in Mexico, kidnappers "happen" to know everything about a target family: phones, addresses of all their properties, I won't be surprised if they have a copy of last year tax refund.

Please Post Your Comments & Reviews

Your email address will not be published. Required fields are marked *

Love to learn about Application Security?

Get all the latest news, tips and articles delivered right to your inbox.