According to to the India Times online edition,call center employees working for an Indian BPO (Business Process Outsourcing) firm, MSource, have extruded confidential client information to in order to transfer client funds to themselves.

The alleged perpetrators used the personal information of four NY-based clients to transfer approximately $350,000 to their own accounts. They were caught after the victims alerted bank officials in the US, who then traced the crime to the Indian city of Pune. While the name of the bank has not been revealed, the article indicates that the bank in question is Citibank.

It is a safe bet that the extrusion exploit was made by possible by a dangerous combination of poor procedures and by a lack of real-time network audit technology.

An ironic side of this episode is the fact the Mphasis is a business process outsourcing firm that advises foreign corporations on best practices on setting up offshore call centers in India.