Hackers penetrate the Japanese web broker accounts and use them worldwide to increase the price of pennies, Japanese legislators and officials say.
According to the police, brokers and financial services Agency (FSA), about $ 100 billion – about $ 710 million – through these deceptive transactions, has already been carried out, most of them in shares.
The pattern is straight: the thieves grab customer login, buy low-capital shares in Japan, the United States or China and raise a high enough price-gender for previous owners hackers yourself – money for cash.
Warmed that their platforms are used as scaming surfaces, several Japanese securities have suspended new shopping orders in China, the US and at home in the names of certain small businesses.
Japanese major brokers have confirmed a suspicious deal of hackers
The largest web brokers in eight countries, including Cell Securities Inc. And SBI Securities Co. has confirmed unauthorized transactions. The success of the attackers has made the Japanese potential weak connection in protecting the world markets, revealing the holes in the cyber security practice of the people, as the government calls for more pension money to pour households into shares.
According to the victims, the experience is confusing and expensive. Mai Mori, 41-year-old part-time employee in Aich Prefecture, detected The fact that his cellular pension account was used to buy Chinese equities value of 639,777 – about twelve percent of his savings. He called the cells that advised him to submit a police report.
“The police told me that most fraud cases often have to quietly accept the loss,” Mori recalled. “Basically, not much to do.”
Rakuten says “continues to investigate each case individually and react in good faith.” Rival SBI argues that this is “listening to individual circumstances and reacting immediately”. SMBC Nikko Securities Inc. adds that he reviews all the complaints and “weighs individual answers”.
Not every victim is willing to go to the public. In the mid-50s, a Tokyo man who asked not to name, says he lost about 50 million ¥ when his brokerage account was hijacked on the morning of April 16th. A warning was flashed by his iPhone, but when he called the company, he was told that the technicians could not freeze the account on time.
On April 22, Minister of Finance Katsunobu called for Kato Kato to hold on to “good faith” talks about compensation with affected clients. So far, however, few investors have received compensation.
In Japan has increased cases of suspicious trading
The extent of the problem is growing rapidly. According to the FSA, suspicious trading cases jumped to 736 in the first half of April, only 33 in February. Officials did not disclose the stolen total, but industry analysts warned that the rise endangers the government's long -term campaign to bring household fish to investment accounts.
Cyber security professionals say cheater Probably rely on two techniques: “opponent average” attacks and an information tester for malware.
In the first case, the victims are attracted to the fake web page – often through data fishing or malicious online advertising – which directly directs them to a real brokerage site.
If the customer writes with a username and a one -time password, the attacker will raise the session cookies and receive account checks. Some fake sites show a real page besides counterfeiting, creating an illusion of authenticity.
According to Yutaka Sejiyama, Deputy Director of Macnica Security Research, another weakness is the cultural preference for the desktop browsers. Mobile applications tend to use stronger biometric controls and encrypted channels. “If people were to change apps, many could have stopped from theft,” he says.
In contrast, information stars are small programs hidden by attachments, ads or fake dens. After a computer or phone, they screen the files and browsers of stored ID and passwords, and the data they send to the attacker without the owner noticing.
Cryptopolitan Academy: Do you want to raise your money in 2025? Here's how to do this in our upcoming web class. Save your place
