- Guard polling centres instead of boycotting election
- Paul Allen: Microsoft co-founder and billionaire dies aged 65
- Asia stocks at 17-month low as China lets yuan slip
- UK announces $22.25m support for Rohingya refugees
- IMF forecasts 7.1pc economic growth for Bangladesh in 2019
- Bangladesh ‘least committed’ to cut rich-poor gap: Oxfam
- Bhashani Univ suspends 5 BCL leaders ‘for misbehaving with teachers’
- NKorea hackers broke into banks, tried to take US$1.1b
- Oil spill threatens Meghna; unheeded for 5 days
- Haiti quake death toll rises to 15, and 300 injured
NKorea hackers broke into banks, tried to take US$1.1b
A North Korean hacking group focused on financial gain for the rogue state has penetrated banks around the world with a series of ongoing attacks, and has tried to steal at least US$1.1bil (RM4.58bil) over the last four years, according to a new tally by cybersecurity firm FireEye Inc.
The group, which FireEye identified as APT38, has infiltrated more than 16 organisations in 11 countries including the United States, and stolen more than US$100mil (RM416mil). The hackers have gotten past heavily defended servers at banks and spent time scouring the networks. Security officials should be alarmed, FireEye said last week in a report.
“What sets the North Koreans apart is they wait an average of 155 days before they steal the money,” Charles Carmakal, vice president of consulting at FireEye, said in an interview. “They understand banking networks pretty well. And they probably have geopolitical considerations behind the timing, location of their attacks.”
The most prominent attack by APT38 was the theft of funds from the Bangladeshi central bank’s accounts at the US Federal Reserve in 2016. In that case, the hackers got the Fed to transfer some US$100mil by sending fake wiring orders. About US$40mil (RM166mil in 2018 currency) was recovered when the hack was discovered and transfers were reversed before they could be withdrawn.
In January, Mexico’s state-owned trade bank thwarted the attempted theft of US$110mil (RM457.42mil) using similar methods. In May, a Chilean bank lost US$10mil (RM41.59mil). All were carried out by APT38, FireEye said in its report.
North Korean diplomats and official media have denied that the country plays any role in cyberattacks.
In its recent attacks, the group “burns the house down”, wiping out computer hard drives to erase its tracks, Carmakal said. Even as other attacks continue, APT38 hasn’t targeted American banks amid North Korea’s peace talks with the United States, he said.
Banks and other financial institutions are targeted by the most sophisticated cyber criminals, who are attracted to the lure of big-money paydays, FireEye and other groups have said. That has prompted banks to outspend other industries to protect themselves, with the biggest US firms’ annual cybersecurity budgets reaching US$1bil (RM4.16bil).
Financial firms face the highest number of attempted breaches from computer addresses that have been already blocked because of prior misbehaviour, according to a report set for release Oct 9 by cybersecurity firm eSentire. That points to targeted campaigns and persistent efforts by sophisticated attackers, according to Eldon Sprickerhoff, founder and chief innovation officer of eSentire.