My sources tell me that someone pulled a "man in the middle" hack on a Latvian bank and an internet service provider, but got burned for it. Awaiting confirmation from the Economic Police that they have someone under arrest.
The «man in the middle» works as follows:
The hacker uses a nasty tool (CAIN or something like that) to corrupt the address resources of an internet service provider. He puts up a clone of a popular internet banking homepage.
The innocent internet bank customer starts to log on to his bank and thinks all is well, since he gets a secure SSL link, not to his bank, but the clone.
As soon as he starts to log on the clone, where the malevolent hacker sees the customer's information «in the clear», the hacker uses it to log onto the real internet banking page. When, as at some Latvian internet banks, the real bank site asks for a code on a preprinted card at random (please enter code 6). The hacker passes it on to the unwitting customer, who provides the code, allowing the hacker to log on to the real bank account and start stealing.
The hacker had apparently been a pest to the ISP for a long time, and now, with a serious crime committed or at least attempted, both the ISP and the bank are glad to have him/her put away.
Apparently, this rather sophisticated type of cybercrime has occurred elsewhere around the world, including Estonia. No bank is likely to confirm that it has been victimized. Nor is an ISP likely to put out a proud press release on how it was hacked.