East European Hackers Invade Online Brokerage Accounts

Using spyware loaded on public computers in internet cafes or hotels or attached to email messages to potential victims, hi-tech crooks, operating from remote locations, have been able to enter online brokerage accounts in the U.S. and either sell off the contents and take the proceeds or manipulate stock prices, according to regulators at the Securities and Exchange Commission (SEC), Reuters reports. “We’re seeing these frauds in offshore entities and persons, including those located in Eastern Europe,” said the agency’s chief of internal enforcement, John Stark, and the SEC is engaged in far-flung investigations.

Stark said that the recent surge in complaints to the SEC could be explained in part because “It’s easier and with all the spyware, and keystroke logging programs have become easier to use and more ubiquitous. More and more people are doing things online as well.”

The SEC is investigating both the online transactions and associated money-laundering activities of the hackers. In one scheme, Stark said, according to the Australian, spyware loaded on a victim’s computer, or a public computer, will email a brokerage account holder’s user name and password back to the hacker who will log on to the account and sell all the securities in it. The money is then wired out to various individuals, recruited by the hacker, who open bank accounts through which the money is laundered.

Another scheme, called “pump and dump,” according to Walter Ricciardi, deputy enforcement director for the SEC, involves the hacker purchasing stock in small companies held in the brokerage account, entering the brokerage account and liquidating these holdings, then using the proceeds to buy them for the hacker’s account, hoping to drive the price up. The proceeds from this scheme are wired to offshore accounts, Stark said.

European IT security professionals said they were more afraid of hackers than their mothers-in-law, with 70 percent identifying identity management as their biggest concern, according to a survey of delegates to the RSA Conference Europe, to be held this month in Nice. Web viruses were considered a greater threat than email viruses by 68 percent of the survey’s respondents. Mobile phone viruses were considered the least significant threat.

Online investors make about 25 percent of retail stock trades in the U.S. from approximately 10 million accounts, according to brokerage regulator NASD, Reuters says.

The SEC is working to track down the hackers and to educate online investors, Stark says,. Investors should never use an unfamiliar computer to access an account and should change passwords frequently.

You may like these other stories...

School tax breaks get House support as Democrats objectRichard Rubin of Bloomberg reported that the House of Representatives on Thursday voted to expand and simplify tax breaks for education as Republicans continue to pass...
Many senior US tax professionals believe that a streamlined audit process will be the top benefit resulting from the IRS Transfer Pricing Audit Roadmap, a new toolkit organized around a notional 24-month audit timeline,...
Tax accounting to be simplified for money-market fundsThe US Securities and Exchange Commission (SEC) voted 3-2 on Wednesday for sweeping changes to institutional money-market funds, Emily Chasan, senior editor of...

Upcoming CPE Webinars

Jul 31
In this session Excel expert David Ringstrom helps beginners get up to speed in Microsoft Excel. However, even experienced Excel users will learn some new tricks, particularly when David discusses under-utilized aspects of Excel.
Aug 5
This webcast will focus on accounting and disclosure policies for various types of consolidations and business combinations.
Aug 20
In this session we'll review best practices for how to generate interest in your firm’s services.
Aug 21
Meet budgets and client expectations using project management skills geared toward the unique challenges faced by CPAs. Kristen Rampe will share how knowing the keys to structuring and executing a successful project can make the difference between success and repeated failures.