Hackers on Friday released documents and files that cybersecurity experts said indicated that the US National Security Agency (NSA) had accessed the SWIFT interbank messaging system, allowing it to monitor money flows among some Middle Eastern and Latin American banks.
The release included computer code that could be adapted by criminals to break into SWIFT servers and monitor messaging activity, said Shane Shook, a cybersecurity consultant who has helped banks investigate breaches of their SWIFT systems.
The documents and files were released by a group calling themselves “The Shadow Brokers.”
Some of the records bear NSA seals, but their authenticity could not be confirmed.
The NSA could not immediately be reached for comment.
Also published were many programs for attacking various versions of the Windows operating system, at least some of which still work, researchers said.
Windows maker Microsoft said it had not been warned by any part of the US government that such files existed or had been stolen.
“Other than reporters, no individual or organization has contacted us in relation to the materials released by Shadow Brokers,” the company said.
The absence of warning is significant, because the NSA knew for months about the Shadow Brokers breach, officials previously told reporters.
According to a White House process established by former US president Barack Obama’s staff, companies were usually warned about dangerous flaws.
Shook said criminal hackers could use the information released on Friday to hack into banks and steal money in operations mimicking a heist last year of US$81 million from the Bangladesh central bank.
“The release of these capabilities could enable fraud like we saw at Bangladesh Bank,” Shook said.
The SWIFT messaging system is used by banks to transfer trillions of dollars each day. Belgium-based SWIFT downplayed the risk of attacks employing the code released by hackers.
SWIFT said it regularly releases security updates and instructs client banks on how to handle known threats.
“We mandate that all customers apply the security updates within specified times,” SWIFT said in a statement.
SWIFT said it had no evidence that the main SWIFT network had ever been accessed without authorization.
It was possible that the local messaging systems of some SWIFT client banks had been breached, SWIFT said in a statement, which did not specifically mention the NSA.
When cyberthieves robbed the Bangladesh Bank last year, they compromised that bank’s local SWIFT network to order money transfers from its account at the New York Federal Reserve.
The documents released by the Shadow Brokers indicate that the NSA might have accessed the SWIFT network through service bureaus.
SWIFT service bureaus are companies that provide an access point to the SWIFT system for the network’s smaller clients and might send or receive messages regarding money transfers on their behalf.
“If you hack the service bureau, it means that you also have access to all of their clients, all of the banks,” said Matt Suiche, founder of the United Arab Emirates-based cybersecurity firm Comae Technologies, who has studied the Shadow Broker releases and believes the group has access to NSA files.
The documents posted by the Shadow Brokers include Excel files listing computers on a service bureau network, user names, passwords and other data, Suiche said.
“That’s information you can only get if you compromise the system,” he said.
SEEKING CHANGE: A hospital worker said she did not vote in previous elections, but ‘now I can see that maybe my vote can change the system and the country’ Voting closed yesterday across the Solomon Islands in the south Pacific nation’s first general election since the government switched diplomatic allegiance from Taiwan to Beijing and struck a secret security pact that has raised fears of the Chinese navy gaining a foothold in the region. The Solomon Islands’ closer relationship with China and a troubled domestic economy weighed on voters’ minds as they cast their ballots. As many as 420,000 registered voters had their say across 50 national seats. For the first time, the national vote also coincided with elections for eight of the 10 local governments. Esther Maeluma cast her vote in the
Nearly half of China’s major cities are suffering “moderate to severe” levels of subsidence, putting millions of people at risk of flooding, especially as sea levels rise, according to a study of nationwide satellite data released yesterday. The authors of the paper, published by the journal Science, found that 45 percent of China’s urban land was sinking faster than 3mm per year, with 16 percent at more than 10mm per year, driven not only by declining water tables, but also the sheer weight of the built environment. With China’s urban population already in excess of 900 million people, “even a small portion
UNSETTLING IMAGES: The scene took place in front of TV crews covering the Trump trial, with a CNN anchor calling it an ‘emotional and unbelievably disturbing moment’ A man who doused himself in an accelerant and set himself on fire outside the courthouse where former US president Donald Trump is on trial has died, police said yesterday. The New York City Police Department (NYPD) said the man was declared dead by staff at an area hospital. The man was in Collect Pond Park at about 1:30pm on Friday when he took out pamphlets espousing conspiracy theories, tossed them around, then doused himself in an accelerant and set himself on fire, officials and witnesses said. A large number of police officers were nearby when it happened. Some officers and bystanders rushed
HYPOCRISY? The Chinese Ministry of Foreign Affairs yesterday asked whether Biden was talking about China or the US when he used the word ‘xenophobic’ US President Joe Biden on Wednesday called for a hike in steel tariffs on China, accusing Beijing of cheating as he spoke at a campaign event in Pennsylvania. Biden accused China of xenophobia, too, in a speech to union members in Pittsburgh. “They’re not competing, they’re cheating. They’re cheating and we’ve seen the damage here in America,” Biden said. Chinese steel companies “don’t need to worry about making a profit because the Chinese government is subsidizing them so heavily,” he said. Biden said he had called for the US Trade Representative to triple the tariff rates for Chinese steel and aluminum if Beijing was