Sberbank explained the failure of online payments new DDoS attack

As have informed in the savings Bank, in the second half Thursday, November 10, a web resource “Sberbank online” was subjected to multiple powerful DDoS attack, which lasted several hours. “The attack was successfully reflected by the protection systems of the Bank. There have been some slowing down from several seconds to several minutes to provide this service”, — said the representative of the Bank. He said that failures in the provision of the services systems of the Bank were not recorded.

November 8-9, the cyber fraudsters organized a series of hacker attacks on a number of Russian banks, including Sberbank, Bank “Otkrytie”, Alfa-Bank. To do this, hackers used botnets that include tens of thousands of machines, geographically distributed across multiple dozens of countries, said the representative of the savings Bank.

The Central Bank on Thursday said that the Centre monitor and respond to computer attacks in the financial sphere (Finart) recorded the attack on a number of large banks, which were attended by a botnet consisting of devices of the so-called “Internet of things”. Fincert is a structural unit of the Main Directorate of security and information protection of the Bank of Russia.

The regulator notes that the power of the attack was average, with “violations of the accessibility of services in the banks were not recorded”. “Relevant information is communicated to law enforcement bodies”, — said the official representative of the Central Bank.

The Internet of things (IoT) — a network of devices equipped with embedded technology to interact with each other or with the external environment. In particular, this can be the household appliances equipped with devices to access the Internet and linked in a network for remote control or any sensors that transmit information on a single server.

That in attacks on Russian banks used devices related to the IoT, said Group-IB, a company specializing in cyber security. According to the research of Group-IB, the amount of theft as the result of targeted attacks on banks in July 2015 — June 2016 increased by 292% compared to the same period in 2014-2015, and reached 2.5 billion rubles.

In Group-IB pointed to the growing popularity of botnets for DDoS attacks “collapses” of the companies ‘ servers. And to create botnets criminals use computers with Windows as it was before, and Linux servers and simple IoT devices. “IoT devices are mostly working round the clock and are not protected by antivirus” — said the press-Secretary of the Group-IB Nicholas Grunin.

A peddler of viruses can be connected to Wi-Fi a refrigerator or other appliances, said a representative of the Group-IB. According to him, household devices can communicate via Wi-Fi with computers and servers and in case of infection to distribute malware or multiple requests to the server of the company that is to carry out a DDoS attack.

The practice of using devices with remote control (IoT) is standard with DDoS attacks, I agree IT Director of a major Bank. “Given the fact that the economy is becoming more digital, the risk of cybercrime is increasing. The volume of DDoS-attacks increased by orders of magnitude because the number of devices “Internet of things” becoming more,” says the banker.

Total from October 2015 to March 2016, the Central Bank recorded 21 cyber attack on the payment system of the Russian financial organizations. Scammers trying to steal accounts with banks of 2.87 billion rubles, the Central Bank and banks to prevent theft for a total amount of 1.6 billion rubles, reported the Bank of Russia.