A group of hackers has stolen, since 2013, hundreds of millions of dollars in accounts of e-payment systems and banks of different countries. Specially affected are Russia and USA due to the volume of received attacks, although there are also affected countries in Europe, South America, Asia, etc.
For the attack, spear phishing techniques were used in order to infiltrate the systems of the targeted banks. Once inside them, the attackers studied the behaviour of the bank employees, in order to subsequently mimic their typical operations, although transferring the money to false accounts. In addition, ATMs were compromised, from which the criminals retrieved the money at predefined time frames.
This campaign, named Carbanak, has been detected by Kaspersky. The company is collaborating with Interpol, Europol and authorities of different countries. Previously, the APT has been reported by Fox-IT, who has named it Anunak.