Cyber (犯罪の)一味 stole secrets for gaming U.S. 株式市場 -FireEye
By Jim Finkle
BOSTON, Dec 1 (Reuters) - 安全 研究員s say they have 暴露するd a cyber スパイ (犯罪の)一味 焦点(を合わせる)d on stealing 法人組織の/企業の secrets for the 目的 of gaming the 株式市場, in an 操作/手術 that has 妥協d 極度の慎重さを要する data about dozens of 公然と held companies.
Cybersecurity 会社/堅い FireEye Inc, which 公表する/暴露するd the 操作/手術 on Monday, said that since the middle of last year, the group has attacked email accounts at more than 100 会社/堅いs, most of them 製薬の and healthcare companies.
犠牲者s also 含む 会社/堅いs in other 部門s, 同様に as 法人組織の/企業の 助言者s 含むing 投資 銀行業者s, 弁護士/代理人/検事s and 投資家 relations 会社/堅いs, によれば FireEye.
The cybersecurity 会社/堅い 拒絶する/低下するd to identify the 犠牲者s. It said it did not know whether any 貿易(する)s were 現実に made based on the stolen data.
Still, FireEye 脅し 知能 経営者/支配人 Jen Weedon said the hackers only 的d people with 接近 to 高度に insider data that could be used to 利益(をあげる) on 貿易(する)s before that data was made public.
They sought data that 含むd 草案s of U.S. 安全s and 交流 (売買)手数料,委託(する)/委員会/権限 filings, 文書s on 合併 activity, discussions of 合法的な 事例/患者s, board planning 文書s and 医療の 研究 results, she said.
"They are 追求するing 極度の慎重さを要する (警察などへの)密告,告訴(状) that would give them 特権d insight into 株式市場 dynamics," Weedon sai d.
The 犠牲者s 範囲d from small to large cap 会社/団体s. Most are in the 部隊d 明言する/公表するs and 貿易(する) on the New York 在庫/株 交流 or Nasdaq, she said.
An 連邦検察局 広報担当者 拒絶する/低下するd comment on the group, which FireEye said it 報告(する)/憶測d to the bureau.
The 安全 会社/堅い 指定するd it as FIN4 because it is number 4 の中で the large, 前進するd financially 動機づけるd groups 跡をつけるd by FireEye.
The hackers don't 感染させる the PCs of their 犠牲者s. Instead they steal passwords to email accounts, then use them to 接近 those accounts 経由で the Internet, によれば FireEye.
They 拡大する their 網状組織s by 提起する/ポーズをとるing as 使用者s of 妥協d accounts, sending phishing emails to associates, Weedon said.
FireEye has not identified the hackers or 位置を示すd them because they hide their 跡をつけるs using Tor, a service for making the 場所 of Internet 使用者s 匿名の/不明の.
FireEye said it believes they are most likely based in the 部隊d 明言する/公表するs, or maybe Western Europe, based on the language they use in their phishing emails, Weedon said.
She said the 会社/堅い is 確信して that FIN4 is not from 中国, based on the content of their phishing emails and their other techniques.
研究員s often look to 中国 when 査定する/(税金などを)課すing 非難する for economically 動機づけるd cyber スパイ. The 部隊d 明言する/公表するs has (刑事)被告 the Chinese 政府 of encouraging hackers to steal 法人組織の/企業の secrets, 主張s that Beijing has 否定するd, 原因(となる)ing 緊張 between the two countries.
Weedon 嫌疑者,容疑者/疑うs the hackers were trained at Western 投資 banks, giving them the know-how to identify their 的s and 草案 納得させるing phishing emails.
"They are 適用するing their knowledge of how the 投資 banking community 作品," Weedon said. (Editing by Eric Walsh)
