Sophisticated banking Trojan - Human consequences
From Trend Micro Countermeasure blog:
I was contacted by a friend yesterday who was understandably very concerned to find that a large amount of money had been transferred from her bank account to the account of a complete stranger hundreds of miles away. My friend had been using her online banking at home the evening before, had made a couple of transfers and all appeared to go normally. However when she heard the following day that one of the transfers hadn't arrived she checked her account from a PC at work and was devastated to find the hitherto invisible transfer of €5000.
Of course the incident was reported to the bank and to the police. The bank shut down the online facility of the account and set about tracing the money and we set about finding out what kind of malware she had on her PC.
You may, if you're interested in malware, have seen some reports recently of a "next generation" banking Trojan that goes by the name of Bebloh or URLZone, and this is what was responsible for the theft of just enough money to stay within the agreed overdraft facility of the account, helping to ensure the transfer was successful.
Later in the day someone else in Germany reported the incident from their end. A woman had met some people in a Russian chat room, they offered her 500 euros if she would transfer the money on. Part of the money was to go to an account in Turkey and part to a Russian account. The mule account holder though was this lady's son, she had given the Russian criminals his bank details "because he still had some overdraft allowance".
More with screenshot of the bank statement showing the fraudulent transaction in http://countermeasures.trendmicro.eu/sophisticated-banking-trojan-human-consequences/