중앙데일리

Hackers strike again in attack on eateries

카드 고객정보 대량 유출...부정사용 속출   PLAY AUDIO

Jan 25,2010
Hackers cracked into the credit card processing networks of several popular restaurant chains in Korea from December through early this year, obtaining personal information from customers to make fake cards and ring up millions of won in purchases.

Authorities said the resulting monetary damage could exceed similar high-profile hacking incidents over the past two years, though they did not provide data on the chains involved or the estimated number of consumers affected.

The cyber crime unit of the national policy agency and local financial authorities said yesterday that the hackers manufactured fake credit cards based on the stolen information, charging roughly 190 million won ($165,794) in purchases abroad.

A Financial Supervisory Service official said the hacker made a total of 460 transactions with the fake credit cards.

Authorities alerted the credit card providers about the latest development, and the firms are now contacting affected customers and reissuing cards with new numbers.

It’s the latest incident in a string of hacking attacks on local credit card payment networks over the past two years, deepening concern among consumers and companies alike.

Similar hacking attacks on several local retail chains - whose names were not revealed - in April 2008 forced some 20,000 Koreans to get new credit cards.

Hackers used the information gleaned in the attacks to produce fake cards, making 310 purchases worth 166 million won.

In August through September of last year, hackers obtained the credit card information of about 2,360 people who swept their cards in local restaurants and bar chains. In these cases, the hackers made purchases worth 78 million won using fake cards.

Industry officials said that the smaller chain businesses are particularly susceptible to these types of attacks, as they don’t have as advanced security systems in place as their larger peers.

“The [credit card payment] processing networks of large business chains like big discount stores are relatively well protected in this regard,” said one official at the Credit Finance Association of Korea. “But small and midsized chains are far more vulnerable in terms of securities measures.”

In the face of intensifying hacking threats, the Financial Supervisory Service, the Credit Finance Association and credit card companies last month formed a joint task force team to come up with possible solutions to prevent such attacks.

[hawon@joongang.co.kr]

Related Korean Article

카드 고객정보 대량 유출...부정사용 속출


신용카드 회원정보가 해킹으로 유출돼 부정 사용되는 사고가 잇달아 발생함에 따라 금융당국이 보안 대책 마련에 나섰다.

25일 금융당국에 따르면 경찰청 사이버테러대응센터는 12월부터 올해 초까지 프랜차이즈 음식점 프랜차이즈 음식점에서 카드를 쓴 고객들의 정보가 유출된 것 것으로 파악하고 수사를 진행 중이다.

금융당국과 경찰은 결제와 판매내역, 재고 등을 실시간 관리하는 포스(POS) 시스템이 해킹됐을 가능성을 높게 보고 있다.

금융당국 한 관계자는 "고객 정보가 어느 정도 유출됐는지 현재 확인 중에 있다"며 "해커들이 유출된 고객 정보로 복제카드를 만들어 주로 해외에서 460여건, 1억9000만 원 어치를 결제한 것으로 조사됐다"고 말했다.

이에 따라 금융당국과 여신금융협회, 카드사 등은 태스크포스(TF)를 구성하고, 보안프로그램 개발과 방화벽 강화 등의 대응책을 수립해 조만간 발표할 예정이다. 현재 카드사들은 복제카드 사용에 따른 피해를 방지하기 위해 정보가 유출된 고객들에게 신용카드를 다시 발급받도록 하고 있다.

  • 한글 원문 기사 보기



    dictionary dictionary | 프린트 메일로보내기 내블로그에 저장