Malware Bank Attacks May Be Linked To Sony Pictures Hack (blogspot.fr) 38
itwbennett writes: Researchers at BAE Systems have found a long chain of coding coincidences linking attempted fraud over the SWIFT network to the 2014 Sony Pictures hack. "The overlaps between these samples provide strong links for the same coder being behind the recent bank heist cases and a wider known campaign stretching back almost a decade," the researchers concluded. But it's still anybody's guess who's behind all these attacks: in Bangladesh, government officials are pointing the finger at SWIFT technicians who worked on the central bank's network last year, while the FBI says that attack was an inside job -- but blames the North Koreans for the Sony hack.
Sunday a bank in Vietnam revealed that it had also identified and blocked a $1.13 million fraud attempt, saying that a third-party service it used to connect to SWIFT's global money transfers system may have been attacked by hackers.
Sunday a bank in Vietnam revealed that it had also identified and blocked a $1.13 million fraud attempt, saying that a third-party service it used to connect to SWIFT's global money transfers system may have been attacked by hackers.
Attacks à la Sony? (Score:2)
Re: Attacks à la Sony? (Score:1)
The attack on Sony, I thought the initial attack vector consisted of compromised employee credentials which were leveraged to gain access, delete files, and upload malware. Please do correct me if that's incorrect.
Re: Attacks à la Sony? (Score:4, Informative)
Re: (Score:1)
Arguing with nuts is usually a waste of time. People who hallucinate Jews under their bed are still going to "see" them under there even if you have 50 witnesses; they'll just say the witnesses were paid by the Jews to lie.
Rock, paper, scissors, hallucinations. Hallucinations always win.
north korea not really believable (Score:2)
Re: (Score:2)
they're probably running very lean on the in-house technology
infrastructure side of the business. Probably too busy trying
to come up with, patent, and profit off some revolutionary new
piece of hardware.
I could totally buy North Korea getting into Sony. They could
easily hire Russian, Chinese, or some other hackers to do it.
Re: (Score:1)
From what I could gather in industry conferences from people closer to the case... yeah, it was really NK.
Malware Korean bank heist attack Bangladesh fraud? (Score:1)
Re: (Score:1)
Re:Malware Korean bank heist attack Bangladesh fra (Score:4, Interesting)
Re: (Score:1)
@bloodhawk: "At some point you are at the mercy of those running the system. Operating System is irrelevant, it is the programs, the auditing and alerting that run on the system. Given how many people have been caught over the last hundred years doing similar scams from inside banks"
The second system that runs transparently to the first, that provides a full and irrevocable audit trail on the first, in order to precisely catch s
Re: (Score:2)
Inside job (Score:1)
The Sony hack was an inside job done from an internal machine.
How fucking hard it is to track that down if marginally competent people are investigating?
This latest bank "attack" was also a (completely unrelated) inside job.
Re: (Score:1)
Very much this.
It is trivial to shouldersurf for credentials in offices because people are so engrossed with their work, or boredom.
Either way, they are so stuck in their own head to get away from the awfulness of being in offices that you could probably walk around in a clown outfit and not be questioned.
And in even shittier networks and machines, you could probably easily install keyloggers, if not software, then hardware loggers.
Hardware loggers can get around pretty much any software defences.
Then you p
Hey now (Score:2)
Sony pays good money to the government to place the blame on North Korea.
Pointing fingers (Score:2)
In other words, nobody knows who did it but everyone has a favorite scapegoat that should be responsible, not because it's likely but because they'd like it.
Re: (Score:2)
Oh, "it was hackers" means "we get to make shit up"?
Uhhhh... network much? (Score:2)
The overlaps between these samples provide strong links for the same coder being behind the recent bank heist cases and a wider known campaign stretching back almost a decade
Maybe the coder is selling his code. Doesn't mean he is behind these campaigns...
Norks (Score:2)
That leaves one country fulfilling the role of NKs ISP. Funny how they continue to get a free pass. It's almost like both governments are of like mind and cooperate on this sort of theft and destruction.
A malicious bank attacked somebody? (Score:1)
I guess I need to read more content before I jump to conclusions. Or maybe the editors/authors should learn to create better headlines.