Thread: Unauthorized NetellerInstacash deposits >$5000!!
View Single Post
  #8 (permalink)  
Old 17th January 2007, 02:54 AM
vinylweatherman's Avatar
vinylweatherman vinylweatherman is offline
Ah James my boy
  
Join Date: Oct 2004
Location: United Kingdom
Posts: 4,937
WTGs: 6
WTGd at 111 Times in 14 Posts
Thanks: 221
Thanked 3,052 Times in 1,574 Posts
Nominated 23 Times in 11 Posts
Nominated TOTW/F/M Award(s): 1
Reputation Points: 16301
Rep Power: 123
vinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond reputevinylweatherman has a reputation beyond repute
System
Quote:
Originally Posted by winbig View Post
That would be possible, but Neteller did say it came from their computer...

As far as the money still being in their system, it's not. It was transferred to another merchant...
It will be in the other merchant's NETELLER account, and it isn't that easy to get money out of Neteller as fast as it can be put in. If Neteller were alerted early, which seems the case, they should have locked ALL accounts in this chain, including the merchant. The fact that a merchant is involved says nothing for the vetting procedures employed by Neteller when deciding if a company is really a proper business or a scam. The FBI will have a field day when they hear about the speed with which the thieves were able to remove the money from the entire system, and for a very substantial amount that could fund some serious criminal activity.

If Neteller say this was done from the user's computer, two questions? 1) was it actually switched on at the time this took place? 2) Was it connected to the internet during this time. If both these are true, this points to a trojan application executing commands from a remote computer through a port. There are some defined ports through which Windows will accept input as though coming from the user's keyboard. A trojan module has to be in place to open the port and feed the comands through, while at the same time ensuring nothing looks out of place to anyone using the PC. They could have got the initial account data from Phishing, including the MAC of the PC as well as the IP address, or they could have inserted a keylogger or screen logger through a malware application. Download any GFED casinos recently?

A complete reinstallation is a good move, however inconvenient, and do not allow the PC near the internet till this has been done in case further information is compromised.
I would really like to see more openness from Neteller in telling us how these thieves got away with this, enough at least for us to know the vulnerabilities that we ourselves may have left open for them, and how we should close them.
__________________
http://www.vinylweatherman.net

The unbelievably out of date guide to Fruit Machines on the UK Motorway network.
Reply With Quote