[ISN] Romanian Hacker Gets 21-Month Sentence for Breaching Subway

http://www.wired.com/threatlevel/2013/01/subway-hacking-scam/ By David Kravets Threat Level Wired.com 01.08.13 A Romanian national is being sentenced in the United States to 21 months in prison for his role in a successful plot to hack customer credit-card-processing systems at more than 150 Subway restaurants and 50 other unnamed retailers. In all, four Romanian hackers compromised the credit-card data of more than 80,000 U.S. customers and used the data to make millions of dollars in unauthorized purchases, according to a 2011 federal indictment. (.pdf) Cezar Butu was handed a nearly two-year-term Monday in a New Hampshire federal court after pleading guilty in September to his role in the scam. > From 2008 until May 2011, the four are accused of hacking into more than 200 point-of-sale (POS) systems in order to install a keystroke logger and other sniffing software that would steal customer credit, debit and gift-card numbers. The hackers also placed backdoors on the systems to provide ongoing access. The hackers allegedly scanned the internet to identify vulnerable POS systems with certain remote desktop software applications installed on them, and then used the applications to log into the targeted POS system, either by guessing the passwords or using password-cracking software. […] ______________________________________________ Visit the InfoSec News Security Bookstore Best Selling Security Books and More! http://www.shopinfosecnews.org