A series of spectacular cyberattacks against banks, resulting in the theft of tens of millions of dollars, has heightened fears for an industry becoming an increasingly attractive target for hackers.
Banks in Bangladesh, the Philippines, Vietnam and Ecuador have been victimized over the past year in the attacks on the Society for Worldwide Interbank Financial Telecommunication (SWIFT), and some analysts expect more attacks to become public.
After news of the US$81 million heist from Bangladesh’s central bank became public in May, SWIFT said the incident was “not a single occurrence, but part of a wider and highly adaptive campaign targeting banks.”
Since then, officials said banks have also been hit in the Philippines and Vietnam.
Meanwhile, Ecuador’s Banco del Austro claimed in a lawsuit that hackers made off with more than US$9 million through fraudulent SWIFT transfer requests.
Cybersecurity specialists say these attacks are likely just the tip of the iceberg and expect more revelations.
“Cybercriminals are no longer targeting grandmothers at home for small amounts, but going directly where the money is,” said Juan Andres Guerrero-Saade, a researcher with the security firm Kaspersky Lab.
Guerrero-Saade said it is not clear where the attacks are coming from, but that the hackers are using techniques similar to those developed for cyberespionage.
“I don’t think this implies it’s nation-states, it’s more of an evolution,” the analyst said. “It’s criminal actors taking on some of those techniques.”
Kaspersky researchers last year uncovered a hacker group that targeted banks in Eastern Europe, estimating losses totaling up to US$1 billion.
Dan Guido, co-founder of the security firm Trail of Bits and hacker-in-residence at New York University’s engineering school, said the recent security breaches are not surprising.
“I didn’t think it would take this long,” Guido said. “There are a large number of attacks like this possible if someone has the resources to do it.”
Guido said a relatively small team of determined hackers could carry out the kind of hacks that went through SWIFT, a Brussels-based network which is used by more than 11,000 financial institutions in 200 countries.
The blame, Guido said, rests squarely with SWIFT for failing to bolster its software or require more secure hardware.
“It’s clearly within their control to have prevented incidents like this,” Guido said.
“They could have had more aggressive security requirements, they could have had protective hardware,” he said.
On July 11, SWIFT announced it had hired cybersecurity firms BAE Systems PLC and Fox-IT while creating its own security intelligence team in an effort to thwart attacks.
In the US, concerns have been raised among officials, industry leaders and lawmakers about potential threats to banks from hackers.
Data breaches in the past affected tens of millions of JPMorgan Chase & Co customers, and accounts from financial giant Morgan Stanley.
A congressional report last month found “major data breaches” at the Federal Deposit Insurance Corp.
The American Bankers Association this month joined with other financial and security organizations to warn of possible risks.
“While recent events targeted national financial institutions with access to a global payment network, financial institutions should assess the risk of all critical systems to ensure appropriate controls are in place,” the warning said, calling for a series of new controls and safeguards against cyberattacks.
Christiaan Beek of Intel Corp’s McAfee Labs said the hackers that targeted SWIFT were well-organized and resourceful.
“We can see that the attackers have done their reconnaissance properly and may have used an insider to get the details they needed to prepare their attack,” Beek said in a blog post.
“The attackers have a very good understanding of the SWIFT messaging system and how to manipulate the system to prevent the detection of their fraudulent attempts of transferring the money,” he said.
Researchers at the security firm Symantec concluded that malware used in the bank hacks shared code with that used in the massive 2014 cyberattack against Sony Pictures Entertainment Inc.
Guido said it is entirely plausible that US banks could face similar attacks.
“I don’t see why it can’t happen here,” he said. “There are a lot of smaller banks that don’t have expertise and guidance to protect their interconnections.”
Guerrero-Saade said a key part of staying ahead of hackers is sharing information about threats to enable security solutions, since many companies fear disclosure would hurt their business.
“Sadly most companies don’t tend to be very forward-looking, they think that if they don’t sound the bell themselves no one will find out,” he said.
“It’s much better for us to get ahead of this as an international community,” he added.
NO VIRUS BLUES: A SEMI Taiwan official said that the virus does not slow down the global semiconductor industry’s investment in manufacturing equipment The production value of the nation’s semiconductor industry is expected to grow 16.7 percent this year from last year, outpacing the global industry’s 3.3 percent growth, industry association SEMI said yesterday. That would help Taiwan safeguard its second spot in the global semiconductor market with a production value of more than NT$3 trillion (US$102.73 billion), SEMI Taiwan president Terry Tsao (曹世綸) told a media briefing in Taipei for the Semicon Taiwan trade show beginning today. The global semiconductor industry’s production value is expected to increase to US$426 billion this year, SEMI said. In terms of semiconductor equipment investment, equipment billings from Taiwanese firms
NOTABLE SHIFT: By 2030, 50% of all laptops would be assembled in Southeast Asia, while Taiwan would still mostly focus on research and development, a report said Global laptop and desktop computer supply chains are expected to shift significantly away from China in the next 10 years, a Market Intelligence & Consulting Institute (MIC, 產業情報研究所) report said. By 2030, only 40 percent of global laptop production would remain in China, said the report, which was released on Thursday. “The reshuffling of the global supply chain will be one of the most important trends in the next 10 years,” the institute said in the report. “In the long run, key component makers will follow laptop assemblers in moving out of China.” The Taipei-based institute predicted most key component makers
Intel Corp has received licenses from US authorities to continue supplying certain products to Huawei Technologies Co (華為), a company spokesman said yesterday. Washington has been pushing governments around to world to squeeze out Huawei, saying that the telecom giant would hand data to Beijing for espionage. From Monday last week, new curbs have barred US companies from supplying or servicing Huawei. This week, the state-backed China Securities Journal reported that Intel had received permission to supply Huawei. China’s Semiconductor Manufacturing International Corp (SMIC, 中芯國際), which uses US-origin equipment to make chips for Huawei and other companies, last week confirmed that it had sought
Merck Group Taiwan yesterday said that it plans to invest substantially on expanding its fab in Kaohsiung’s Lujhu District (路竹) to better serve its local customers, including Taiwan Semiconductor Manufacturing Co (TSMC, 台積電). The company said it plans to expand its production space by 50 percent in the next five years and its workforce by about 40 percent, Merck Group Taiwan managing director Dick Hsieh (謝志宏) told a media briefing in Taipei. Hsieh declined to disclose investment details, but said that the latest investment would exceed the total amount Merck has invested in Taiwan over the past few years. Those investments would be