Network Security News

Hacker in Heartland data breach a 'fall guy' for Russians?

Monday, August 24, 2009

IT security experts are suggesting that 28-year-old Albert Gonzales, who was indicted last week for involvement in the massive data breach of Heartland Payment Systems, may just be a fall guy for more expert hackers who have escaped justice in Russia.

Gonzales was charged last Monday with conspiracy and wire fraud for involvement along with two unnamed Russian co-conspirators hacking the network firewalls of Heartland Payment Systems, along with retail chains 7-Eleven and Hannaford Brothers.

Gonzales was already in custody and facing trial in two other hacking cases for data theft from TJX and another retailer.

But security experts say Gonzales may have just been "the tip of the iceberg" and not the real mastermind behind the attacks, who are likely connected to criminal gangs in Russia and elsewhere in Eastern Europe.

Writing at the Trend Micro malware blog, security researcher Paul Ferguson said there is "an entire Eastern European organized criminal operation that is further along in this food chain."

Richard Koman, writing for ZDNet, said Gonzales may have been "a low-level purveyor of data" who was used by the Russians for "scope-out work" to locate the vulnerabilities exploited by the other hackers.
ADNFCR-1765-ID-19327164-ADNFCR

Related News:

Zeus botnet performs MySpace spam campaign to spread itself further - 11.20.2009
A sophisticated Trojan dubbed "Zeus" has sent a flood of email messages to MySpace users in an attempt to propagate itself onto more computers, according to researchers at the University of Alabama at Birmingham.

Experts dissect Chrome OS security features - 11.20.2009
Yesterday's release of Google's groundbreaking new cloud-based operating system, Chrome OS, has caused a stir in techie circles, with experts of all stripes rushing to examine the product and issue their judgments.

Microsoft counts Chrome coup with discovery of security flaw - 11.20.2009
Security researchers at Microsoft recently discovered a security vulnerability in Google's controversial Chrome Frame for Internet Explorer, a browser plug-in that simulates Chrome functionality within an Internet Explorer session.

iPhone user sues games maker, claiming to have found hidden spyware - 11.18.2009
An iPhone gamer filed a federal lawsuit against mobile game programmer Storm8 today, alleging that the company violated his privacy by including hidden code in its games that gathered his personal information without permission.

Government watchdog warns of possible IT leaks at Los Alamos - 11.16.2009
The Government Accountability Office has issued a report on data security at the Los Alamos National Laboratory which says that sensitive and highly classified information is vulnerable to outside access.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now