Default passwords enable huge thefts
By Zhao Wen |
December 20, 2011, Tuesday
|
Print Edition
Print Edition
STOCK traders are being warned against using default log-in passwords to enter online security trading systems, as the funds in their account can easily be stolen by speculators.
The Jing'an District People's Court yesterday sentenced a man to 11 years in prison for theft after he gained nearly 140,000 yuan (US$22,000) by controlling some 20 victims' accounts. The 31-year-old convict, Sun Jiwu, was also fined 70,000 yuan.
Sun had been imprisoned for nine years for robbery in April 1999.
After he was released, Sun could not find a stable job and decided to steal money from stock traders' investment accounts. Sun said it occurred to him that some users might keep using the default log-in passwords.
Sun told the court he found a securities firm whose online trading system allowed limitless trials for password. The court said Sun tested more than 2,000 accounts with the eight-digit default password, and found 20 and victimized those clients between July and December last year.
Sun bought stock accounts and opened several bank accounts with others' identity cards. He used his account to buy corporate bonds and entrusted to sell them at a 10 percent higher price. After that, Sun logged into the victims' accounts with the default password and sold their stocks and used the proceeds to buy his corporate bonds.
Sun used the same means to dump the corporate bonds in the victims' accounts again and buy overpriced securities from him until their capital accounts were drained.
Between September 13 and December 21 last year, Sun made a profit of more than 139,000 yuan and transferred the money from his trade accounts to bank cards.
The Jing'an District People's Court yesterday sentenced a man to 11 years in prison for theft after he gained nearly 140,000 yuan (US$22,000) by controlling some 20 victims' accounts. The 31-year-old convict, Sun Jiwu, was also fined 70,000 yuan.
Sun had been imprisoned for nine years for robbery in April 1999.
After he was released, Sun could not find a stable job and decided to steal money from stock traders' investment accounts. Sun said it occurred to him that some users might keep using the default log-in passwords.
Sun told the court he found a securities firm whose online trading system allowed limitless trials for password. The court said Sun tested more than 2,000 accounts with the eight-digit default password, and found 20 and victimized those clients between July and December last year.
Sun bought stock accounts and opened several bank accounts with others' identity cards. He used his account to buy corporate bonds and entrusted to sell them at a 10 percent higher price. After that, Sun logged into the victims' accounts with the default password and sold their stocks and used the proceeds to buy his corporate bonds.
Sun used the same means to dump the corporate bonds in the victims' accounts again and buy overpriced securities from him until their capital accounts were drained.
Between September 13 and December 21 last year, Sun made a profit of more than 139,000 yuan and transferred the money from his trade accounts to bank cards.
- About Us
- |
- Terms of Use
- |
-
RSS - |
- Privacy Policy
- |
- Contact Us
- |
- Shanghai Call Center: 962288
- |
- Tip-off hotline: 52920043
- 沪ICP证:沪ICP备05050403号-1
- |
- 互联网新闻信息服务许可证:31120180004
- |
- 网络视听许可证:0909346
- |
- 广播电视节目制作许可证:沪字第354号
- |
- 增值电信业务经营许可证:沪B2-20120012
Copyright © 1999- Shanghai Daily. All rights reserved.Preferably viewed with Internet Explorer 8 or newer browsers.
