Vietnam Commercial Bank Targeted by Swift Hack
World Economy

Vietnam Commercial Bank Targeted by Swift Hack

Vietnam’s Tien Phong Commercial Joint Stock Bank said it was the target of a computer attack where hackers tried to steal more than $1.13 million through the bank’s connection to the Swift interbank messaging system.
The attack took the form of a fraudulent transfer request for more than €1 million ($1.13 million), which came through a third-party service the bank used to connect to Swift and was blocked, the bank said in a statement to Reuters.
Swift, a Belgium-based organization, whose technology is used by more than 11,000 banks and other institutions to initiate money transfers and perform other essential financial tasks, warned clients on Friday that hackers abusing its system had struck a second organization.
The latest attempt follows one of the largest cyber heists in history: the theft of more than $80 million from the Bangladesh central bank’s account at the Federal Reserve Bank of New York in February. Swift didn’t name the organization, other than saying it was a commercial bank client.
The attacks show how hackers, in addition to stealing individuals’ credit card numbers and banking credentials to drain accounts, are also abusing the technologies underlying trusted internal links between banks to pull off bigger heists.
“Via a risk warning and oversight system and a tight internal control process, TPBank has identified a suspicious transaction worth more than a million euros transferred by invalid Swift messages that was not executed by the bank itself,” Tien Phong said in the statement to Reuters. “This attack ... did not cause any losses and had no impact on the SWIFT system in particular and the transaction system between the bank and customers in general.”
Tien Phong told Reuters that it is no longer using the third party, which was using a software application that Swift said may have been used in the attack. Swift had earlier said the unnamed client was targeted with an attack against the PDF reader it used to check messages.
In the case of the Bangladesh heist, Mohammed Farashuddin, chief of the government panel on the attack, said in Dhaka on Sunday that the malicious software appears to have been made in Pakistan or North Korea.
A mistake by two engineers working for Swift in linking settlement systems for local and international money transfers in November 2015 apparently created the vulnerability that the attackers exploited, Farashuddin said. Antivirus software was causing problems in establishing the connection, so it was removed without the bank’s knowledge. That mistake probably allowed the hackers to copy the keystrokes of workers in Bangladesh Bank’s back office, he said.

Short URL : http://goo.gl/mqQvSS
  1. http://goo.gl/GKFOAW
  • http://goo.gl/gnwVha
  • http://goo.gl/OWiieu
  • http://goo.gl/Hau4vy
  • http://goo.gl/fhNcgv

You can also read ...

Deutsche Bank CEO John Cryan (L) and ECB President Mario Draghi at a conference in Frankfurt on Sept. 6.
The head of Germany’s biggest private lender wants the...
President Emmanuel Macron (C) signs a set of executive orders making sweeping changes to France’s complex labor laws on Friday.
France’s private sector expanded the most since May 2011,...
The People’s Bank of China
China’s small banks are struggling to raise funds through...
India Eases Foreign Investment Rules
The Reserve Bank of India eased rules governing foreign...
Workers unite in steely opposition to Thyssenkrupp’s deal with Tata.
Thousands of steelworkers hit the streets of Bochum in Germany...
Analysts say the outlook for Britain’s public finances had “weakened significantly” with Brexit likely to put further pressure  on the country’s economic strength.
Moody's cut Britain's long-term credit rating Friday, citing...
Portugal Budget Deficit Narrows
Portugal’s budget deficit narrowed to 1.4% of gross domestic...
Brazil Frees Up $4b in Gov’t Spending
Brazil’s government has freed up 12.8 billion reais ($4.1...