Author Topic: Fourth Bank hit by hackers! -- Global banking system under attack!!!!  (Read 960 times)

Offline jasonX

  • Most Valuable Member
  • Youngling
  • *
  • Posts: 37
    • View Profile
Philippines Bank hit by SWIFT Hacking Group allegedly linked to North Korea

And then again a 4th bank was hit by hackers in what CNN is stating as "Global banking system under attack".'s Swati Khandelwal reports belwo about the details. Read also below for related news story and their links!

SWIFT Bank Hackers have attacked another bank in the Philippines using the same modus operandi as that in the $81 Million Bangladesh Bank heist.

Security researchers at Symantec have found evidence that malware used by the hacking group shares code similarities with the malware families used in targeted attacks against South Korean and US government, finance, and media organizations in 2009.

“At first, it was unclear what the motivation behind these attacks were, however, code sharing between Trojan.Banswift (used in the Bangladesh attack used to manipulate SWIFT transactions) and early variants of Backdoor.Contopee provided a connection,” Symantec blog post says.
In past few months, some unknown hackers have been targeting banks across the world by gaining access to SWIFT, the worldwide inter-bank communication network that is being used to transfer Billions of dollars every day.

Two weeks ago, Investigators from British defense contractor BAE Systems discovered that malware used in the Bangladesh $81 million cyber heist was almost identical to one used to infiltrate banks in Ecuador and Vietnam.

Investigators are examining possible breaches at as many as 12 banks linked to Swift’s global payments network.


FOURTH bank hit by SWIFT hackers : Has Sony Pics' Lazarus crew come back from the dead?'s John Leyden's reports on the details below.

A fourth bank, this time in the Philippines, has been attacked by hackers targeting the SWIFT inter-bank transfer system.

Security researchers at Symantec reckon the same group blamed for the infamous $81m Bangladesh central bank mega-heist back in February also mounted an earlier assault in the Philippines last year, itself part of a growing litany of assaults.

The same hacker group was also blamed for the theft of $12m from an Ecuadoran bank, Banco del Austro SA. Related strains of malware featured in attacks against these various banks, suggesting that the same group is behind multiple assaults, as Symantec explains.

Symantec has identified three pieces of malware which were being used in limited targeted attacks against the financial industry in South-East Asia: Backdoor.Fimlis, Backdoor.Fimlis.B, and Backdoor.Contopee. At first, it was unclear what the motivation behind these attacks were, however code sharing between Trojan.Banswift (used in the Bangladesh attack used to manipulate SWIFT transactions) and early variants of Backdoor.Contopee provided a connection.

Wiping code used to cover up the banking assaults matches that which featured in the Sony Pictures attacks, Symnatec’s researchers discovered. This commonality of tactics, techniques and procedures has allowed the security firm to point the finger of blame for the SWIFT bank hacks towards the same hackers who ransacked Sony Pictures network two years ago.

Symantec believes distinctive code shared between families and the fact that Backdoor.Contopee was being used in limited targeted attacks against financial institutions in the region, means these tools can be attributed to the same group. Backdoor.Contopee has been previously used by attackers associated with a broad threat group known as Lazarus. Lazarus has been linked to a string of aggressive attacks since 2009, largely focused on targets in the US and South Korea. The group was linked to Backdoor.Destover, a highly destructive Trojan that was the subject of an FBI warning after it was used in an attack against Sony Pictures Entertainment. The FBI concluded that the North Korean government was responsible for this attack.


SWIFT hackers nicknamed 'Lazarus' hit a fourth bank in Philippines by Jose Pagliery, CNN Money

North Korea-linked 'Lazarus' hackers hit a fourth bank in Philippines

Jose Pagliery and Charles Riley  of CNN states the details below.

Hackers targeting the international financial system have claimed a fourth victim: a bank in the Philippines.
It's now clear the global banking system has been under sustained attack from a sophisticated group -- dubbed "Lazarus" -- that has been linked to North Korea, according to a report from cybersecurity firm Symantec.

In at least four cases, computer hackers have been able to gain a dangerous level of access to SWIFT, the worldwide interbank communication network that settles transactions.

In early February, hackers broke into Bangladesh's central bank and stole $101 million. Their methods appear to have been deployed in similar heists last year targeting commercial banks in Ecuador and Vietnam.
Symantec revealed evidence on Thursday that suggests hackers used the same technique to slip into a bank in the Philippines in October. Symantec (SYMC) did not name the bank.


Philippines Bank Hacked by SWIFT Hackers nicknamed as ‘Lazarus’