The intrusion was detected about an hour after it started, ElectroNet CEO Allen Byington told the Tallahassee Democrat. Byington said that ElectroNet stores no confidential data on its computers and that the company was “working closely” with law enforcement agencies investigating the incident. The banks’ sites were shut down for several days, and bank officials said the financial losses were “minimal,” and that any customers who lost money were reimbursed by their respective banks.
Since the attackers redirected bank customers to spoof sites hosted elsewhere, this type of attack could be detected by users of the Netcraft Toolbar, which displays the name and location of a site’s hosting service.