Our Georgia History

RBS WorldPay Hacked
November 8, 2008 A group of hackers coordinates a series of ATM withdrawals at 2,100 ATMs located around the world, including in the United States, Russia, Ukraine, Estonia, Italy, Hong Kong, Japan, and Canada.
  RBS WorldPay Hacked
November 10, 2008 RBS WorldPay discovers a $9 million fraud perpetrated two days earlier.
  RBS WorldPay Hacked
December 23, 2008 RBS WorldPay announces it discovered "its computer system had been improperly accessed by an unauthorized party" on November 10.
  RBS WorldPay Hacked
November 10, 2009 A federal grand jury returned indictments against 4 people for the attack on the RBS WorldPay system headquartered in Atlanta
  RBS WorldPay Hacked

Four men were indicted for hacking into Atlanta, Ga.-based payment processor RBS WorldPay and stealing over $9 million from ATMs around the globe. The federal grand jury returned indictments against Sergei Tsurikov,(Estonia), Viktor Pleshchuk (Russia), Oleg Covelin, (Moldova) and "Hacker 3."

RBS WorldPay, part of the Royal Bank of Scotland, was hacked a year ago, according to Acting U.S. Attorney Sally Quillian Yates. The Attorney-General called the hack "perhaps the most sophisticated and organized computer fraud attack ever conducted." RBS WorldPay confirmed that personal information (mostly PIN's and associated account numbers) for 1.5 million cardholders had been taken by the hackers. As many as 1.1 million others people may have had their social security numbers accessed.

Over $9 million was stolen and the "cashers" -- associates who carried out the actual cash withdrawals -- were allowed to allowed to keep between 30% and 50% of the amount they withdrew, with the remainder being wired back to the hackers. The withdrawals occurred at 2,100 ATMs located in at least 280 cities around the world, including Canada, Estonia, Hong Kong, Italy, Russia, Ukraine, Japan, and the United States."

Having access to the RBS WorldPay network, Pleshchuk and Tsurikov allegedly monitored the withdrawals and then attempted to cover their tracks by destroying data on the network.

If convicted, the four men face up to 20 years in prison for wire fraud charges; up to five years in prison for conspiracy to commit computer fraud; as many as 10 years in prison for each count of computer fraud; a two-year mandatory minimum sentence for aggravated identity theft; and fines up to $3.5 million dollars, according to the U.S. Department of Justice.

Return to Index

FrontHistory 101Early GeorgiaAmerican IndiansSearch

Golden Ink
Georgia's innovative design group

Legal Notice
Privacy Policy