User Tag List

Results 1 to 4 of 4

Thread: BD Central Bank used 10$ switches and had no firewall..

  1. #1
    Member
    • Ehsas's Gadgets
      • Motherboard:
      • MSI Z97-G45
      • CPU:
      • Intel Core i7-4790K 4.0GHz
      • RAM:
      • G.Skill Ripjaws X Series 16GB (2 x 8GB) DDR3
      • Hard Drive:
      • Seagate Barracuda 3TB/Samsung Evo Pro (1TB SSD)
      • Graphics Card:
      • EVGA Superclocked ACX GTX 980 dual SLI
      • Display:
      • LG 34UM95
      • Sound Card:
      • Asus Xonar
      • Speakers/HPs:
      • Razer Kraken Pro (green)
      • Keyboard:
      • Rosewill STRIKER RK-6000
      • Mouse:
      • perrix mx(old one) not sure the model
      • Controller:
      • xbox 360's controller
      • Power Supply:
      • Snow Silent Seasonic 750w
      • Operating System:
      • Windows 7 64 bit
      • ISP:
      • Mazeda BD
      • Download Speed:
      • 38096
      • Upload Speed:
      • 9096
    Ehsas's Avatar
    Join Date
    Jul 2015
    Location
    Dhaka
    Posts
    1,199

    Default BD Central Bank used 10$ switches and had no firewall..

    Malware that would alter two bytes of data, second-hand networking switches, and the lack of any firewall on the IT network of the Bangladesh central bank has allowed attackers to take control over the institution's SWIFT payment system.
    In spite of the fact that Bangladeshi officials have not offered any definite answers on how the Bangladesh central bank heist happened, independent security firms are starting to piece different clues together.
    What we know until now
    At the end of February 2016, a group of unknown hackers tried to steal around $1 billion from the Bangladesh central bank's account at the US Federal Reserve Bank in New York.
    The hackers used the bank's official SWIFT account to transfer money to various other banks around the world, but after stealing $81 million, a typo unfoiled their plans and stopped the rest of the heist.
    Authorities tracked the stolen $81 million to casinos in the Philippines and managed to recover some of the money. Bangladesh central bank's governor and two deputy governors were forced to resign.
    Last week, authorities announced they think a group of twenty suspects from around the world were behind the incident.
    A Bangladeshi man developed malware targeting the bank's SWIFT system
    Security firm BAE Systems says it identified a piece of custom malware uploaded to online malware repositories that they believe is linked to the heist. The malware was uploaded online by a person living in Bangladesh and targets vulnerabilities in the SWIFT system.
    SWIFT stands for the SWIFT Alliance Access software suite and is a complex application for making financial transactions, which works on top of an Oracle database.
    Researchers explained today that hackers infiltrated the bank's SWIFT system using this custom malware, and gained access to the bank's entire financial transactions payment system.
    Appalling bank IT network configuration
    In an alternative investigation carried out by Reuters, reporters revealed that the Bangladesh central bank didn't utilize a firewall to protect its IT network.
    Additionally, the bank had utilized second-hand switches priced at $10. These switches didn't support virtual networks, so the SWIFT system was interconnected with the rest of the bank's workstations.
    The hackers simply had to infect one computer with their malware, and from there the malware would have spread to the SWIFT system. Exploiting a vulnerability that allowed them to change two bytes of data, they got control over the SWIFT application and its underlying database.
    The hackers then initiated official transactions on behalf of the Bangladesh central bank using funds stored in the bank's US Federal Reserve account.
    Custom-made malware, just for the Bangladesh bank infrastructure
    An automatic send-to-printer system that listed all financial transactions on a local printer also protected the bank's SWIFT system. In order to mask their illegal operations, the malware also included a module that blocked this backup, physical logging feature.
    All of these peculiarities show that attackers had insight of how the bank had set up its infrastructure and how the SWIFT system was exposed.
    "This attacker put significant effort into deleting evidence of their activities, subverting normal business processes to remain undetected and hampering the response from the victim," a BAE Systems malware analyst explained.
    This malware was written bespoke for attacking a specific victim infrastructure, but the general tools, techniques and procedures used in the attack may allow the gang to strike again."
    UPDATE: SWIFT has released a statement on BAE Systems' findings, which you can read below.



    Read more: http://news.softpedia.com/news/secon...#ixzz47M3UMRaO
    Last edited by Ehsas; May 1st, 2016 at 06:16.

  2. #2
    Member
    • kaziishan's Gadgets
      • Motherboard:
      • Asus Sabertooth Z97 Mark S
      • CPU:
      • Intel Core i7-4790K (Thermaltake Frio OCK CPU Cooler)
      • RAM:
      • 2x8GB Kingston HyperX Fury White DDR3-1866
      • Hard Drive:
      • 240GB Zotac ZTSSD-A5P Premium, 1TB Toshiba (x2 RAID 1), 2TB Toshiba (x2)
      • Graphics Card:
      • Sapphire Nitro+ RX 480 4GB OC (Core:1390MHz, Memory:2000MHz)
      • Display:
      • LG 22MP68VQ-P 21.5" FHD IPS FreeSync 75Hz, ViewSonic VX2263S 21.5" FHD IPS 60Hz
      • Speakers/HPs:
      • Creative SBS A35
      • Keyboard:
      • FL-ESports Mechanical Armor
      • Mouse:
      • Mad Catz R.A.T.3 Titanfall Edition
      • Power Supply:
      • Corsair RM1000 80+ Gold
      • USB Devices:
      • PNY Turbo 3.0 64GB USB Flash Drive (R:105MBps, W: 58MBps)
      • UPS:
      • Prolink 1200VA
      • Operating System:
      • Windows 10 Pro
      • Comment:
      • Thermaltake Suppressor F51 Case
      • ISP:
      • Link3 Technologies
      • Download Speed:
      • 8mbps
      • Upload Speed:
      • 8mbps
    kaziishan's Avatar
    Join Date
    Oct 2015
    Location
    Dhaka
    Posts
    698

    Default

    Click image for larger version. 

Name:	BDBank_Meme.png 
Views:	4 
Size:	1.31 MB 
ID:	38334

  3. #3
    Member
    • furiousTaher's Gadgets
      • Motherboard:
      • Asus z170p || Asus p8 P67m pro
      • CPU:
      • i7 6700k || i5 2400
      • RAM:
      • 2 x Ripjaws 8gb 3200C16D 16GVKB || (Transcend 4gb + Adata 4gb) 1333
      • Hard Drive:
      • Evo 850 250gb + Toshiba 2tb || WD 500gb blue
      • Graphics Card:
      • Zotac gtx 1060 amp || Sapphire r7 260x 1GB
      • Display:
      • Asus vx229h ||Samsung 21.5" S22A300B
      • Sound Card:
      • Xonar dgx
      • Speakers/HPs:
      • Microlab 223 || AltecLansing VS2621 + a4tech hs100
      • Mouse:
      • a4tech x7
      • Power Supply:
      • Adata HM 850w || Thermaltek 600 TR2 S
      • Optical Drive:
      • Asus dvd writer 24x max
      • USB Devices:
      • Phantom 240 red/black || Vatyn 664b (Tyrannosaurus)
      • UPS:
      • Power guard 1200va
      • Comment:
      • :D
    furiousTaher's Avatar
    Join Date
    Apr 2010
    Location
    Dhaka
    Posts
    8,151

    Default

    Quote Originally Posted by kaziishan View Post
    Click image for larger version. 

Name:	BDBank_Meme.png 
Views:	4 
Size:	1.31 MB 
ID:	38334
    rofl....
    but it was actually network switch not light on off switch

  4. #4
    Member
    • Fox Mulder's Gadgets
      • Motherboard:
      • Gigabyte GA-Z77-D3H Rev 1.1 (Currently dead) | Intel DH55TC
      • CPU:
      • Core i5 3470 @ 3.8 Ghz (Currently not used) | intel Core i7 860 @ 3.3 GHz
      • RAM:
      • Corsair Vengeance 1600 MHz 2x4GB
      • Hard Drive:
      • Western Digital Blue 1 Terrabyte
      • Graphics Card:
      • Sapphire HD 7950 Vapor-X OC With Boost 3GB GDDR5 || Gigabyte GTX 680 Windforce 4GB
      • Display:
      • Philips 191EL 19" LED @77 Hz
      • Sound Card:
      • Creative Sound Blaster Live! 24 Bit
      • Keyboard:
      • Corsair K70 RGB
      • Mouse:
      • A4Tech 2X Click
      • Power Supply:
      • Thermaltake Smart 650W Modular
      • Optical Drive:
      • Samsung DVD Writer
      • UPS:
      • Spark Power (!) 1200VA
      • Operating System:
      • Windows 10 Build 10162
      • Comment:
      • It gets the job done!
      • ISP:
      • BracNet
      • Download Speed:
      • 1 Mbps
      • Upload Speed:
      • 1 Mbps
    Fox Mulder's Avatar
    Join Date
    Jul 2009
    Location
    I don't live in a city.
    Posts
    5,185

    Default

    They were like, who's gonna even think about robbing an ebank, right?

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Page generated in 0.17162 seconds with 14 queries.