Global Society for Worldwide Interbank Financial Telecommunications (SWIFT) warned on Thursday of a second malware attack similar to the Bangladesh central bank hack one that led to $81 million cyber heist.
SWIFT has not disclosed which commercial bank it was or whether it had lost money, but cyber-security firm BAE Systems said a Vietnamese bank, which it did not name, had been a target. It was not clear if they were referring to the same attack and there was no immediate comment from authorities in Hanoi.
Forensic experts believed
The second case showed that the Bangladesh heist was not a single occurrence, but part of a wider campaign targeting banks.
According to SWIFT in both cases insiders or cyber attackers had succeeded in penetrating the targeted banks’ systems, obtaining user credentials and submitting fraudulent SWIFT messages that correspond with transfers of money.
SWIFT spokeswoman Natasha de Teran told
The second attack and the Bangladesh bank heist contained numerous similarities and were very likely part of a “wider and highly adaptive campaign targeting banks,” the NY Times reported.
The report said the malware used against Bangladesh Bank exhibits “the same unique characteristics” as software used in “Operation Blockbuster”, a campaign documented by a coalition of security firms that dates back to at least 2009 and includes the Sony hack.
Asked about the report, a Bangladesh Bank spokesman said: “We have engaged forensic experts to investigate the whole thing, including this.” He did not elaborate.
Investigators have determined that one team of hackers, dubbed Group Zero in the report, was responsible for the heist and remained inside the network. Group Zero may be seeking to monitor the ongoing cyber investigations or cause other damage, but is unlikely to be able to order fraudulent fund transfers, the investigators wrote.
Subscribe for latest hacking updates