Investigators in Switzerland and Poland managed to attack a gang of hackers in a joint operation. On April 29, five men from the InfinityBlack group were arrested in Poland and about 100,000 euros (105,000 Swiss francs) were seized from external hard drives and cryptocurrencies.

Thanks to a sophisticated system, hackers managed to find login combinations for loyalty point accounts. They sold these credentials to other criminals through Darknet.

Affected Migros clients

BLICK’s investigation has shown that the victims are clients of Migros. Migros spokesman Patrick Stöpper confirmed to BLICK: “Loyalty points were stolen and redeemed from isolated Cumulus accounts.” It does not say how many customers are affected.

According to Interpol, the damage was around 50,000 euros, but the hackers had access to accounts with a total value of 610,000 euros. A total of 170 million records were found.

Migros became aware of the abuse in early 2019. Stöpper: “Customers informed us that their points had been exchanged for products without having purchased anything.”

Arrests in the canton of Vaud

It soon became clear that the perpetrators were active in the canton of Vaud. A Kapo Vaud spokesperson said at BLICK’s request: “In early May 2019, we arrested five people who had entered Cumulus accounts with data purchased in Poland and attempted to redeem loyalty points for electronic devices.”

The five Swiss who live in the canton of Vaud were arrested in their apartments. They are minors and young adults, who are still under investigation.

Stöpper advises customers to always check their Cumulus bills. Stolen stitches would be politely replaced by damaged customers. Stöpper: “We are relieved that the perpetrators have been captured.”

TricksFast News that Matters to You Most

Thanks to Polish hackers: teenagers looted cluster points

Related Articles