(PresseBox)
(London,
2010-08-11)
A payroll hijacking incident in New York State - in which a Westchester Countybased pharmaceuticals company, Regeneron, computer was hacked and cybercriminals attempted to divert salary deposits to their own mule bank accounts - has been called a classic stolen credentials case by Imperva, the data security specialist.
In this incident, hackers stole the online credentials to a payroll processing application belonging to an employee working for the pharmaceutical company.
Amichai Shulman comments "By using the stolen credentials from Regeneron, the attackers were able to gain access to Ceridian's online management system. The credentials were likely to belong to an accounting manager, or any other administrator responsible for Regeneron's finances, since the hackers then attempted to transfer the direct deposit salary of nine other employees, to their accounts."
"This is a classic case of stolen credentials." he added, "These are direct credentials to a processing application. In this case the thieves didn't need to steal social networking credentials in an attempt to gain payroll details, they already had these credentials to hand. Past research has shown that many people use the same credentials for multiple sites; people need to start being more cautious of what credentials they are using for different sites. To stop unauthorized access to other applications, we urge everyone to use different, strong credentials for multiple sites to avoid cases like these reoccurring in other applications."
And, he says, "This latest incident should raise a concern within Regeneron not only with respect to employee data but also with respect to other sensitive data processed by the company such as clinical trial data. This in terms may be sensitive for people outside of Regeneron as well".
For more on the latest Ceridianlinked security problem:
http://bit.ly/cMV7zD
For more on Imperva: www.imperva.com
Press release BoxID: 365644 (Imperva Inc.)
- Imperva Inc.
- 3400 Bridge Parkway, Suite 101
- 94065 Redwood Shores, CA
- https://www.imperva.com
- Contact person
- Darshna Kamani
- +44 (20) 7183-2834
QrCode
What its a QR code?
Three steps: Scanning of a QR code: Find your way to a press release without typing. Use the QR code on the print version of a press release to get redirected to the corresponding page on PresseBox.
How does scanning a QR code work? Just follow these simple steps.
Everything you need is an internet-enabled mobile phone or smartphone with a built-in camera and a QR code reading software.
QR stands for Quick Response - with one step you can quickly reach a website. QR codes work like bar codes, which you can find on your milk carton, for example. A software decrypts the QR code and directs you to a web page - so you do not even need to know the web address to reach it.
Download and print your digital press kit now
Please send the following information to my email address:
Latest US payroll electronic heist attempt highlights value of stolen credentials
Imperva Inc.
Imperva is the global leader in data security. With more than 1,200 direct customers and 25,000 cloud customers, Imperva's customers include leading enterprises, government organizations, and managed service providers who rely on Imperva to prevent sensitive data theft from hackers and insiders. The awardwinning Imperva SecureSphere is the only solution that delivers full activity monitoring for databases, applications and file systems. For more information, visit www.imperva.com, follow us on Twitter or visit our blog.
