Lazarus may be responsible for Bangladesh Central Bank hack

Exclusive: Widespread security flaw affects hundreds of UK news sites

The group that tried to steal a million dollars from the Vietnamese Tien Phong Bank, managed to steal $81 million from Bangladesh's Central Bank, and managed to steal $12 million from a bank in Ecuador, also attacked a bank in the Philippines.

However, it remains unclear if the group actually managed to steal any money from this bank or not. What we do know, though, is that all these attacks seem to be pointing at the same hacking group, known as Lazarus.

That is the conclusion security experts came to, after analyzing the source code of the malware used in the attack, and realizing it has many similarities to other malware proven to be used by Lazarus in the past. It also seems as this attack took place before the spotted Vietnamese one.

Three different pieces of malware were used in this attack, security experts from Symantec have said: Backdoor.Fimlis, Backdoor.Fimlis.B, and Backdoor.Contopee. All three pointed to the same group, the researchers said:

"Symantec believes distinctive code shared between families and the fact that Backdoor.Contopee was being used in limited targeted attacks against financial institutions in the region, means these tools can be attributed to the same group".

The attacks were spotted by payments network SWIFT, after the attack against the Bangladeshi bank triggered an alarm.

Symantec says all this points to the fact that there’s a wider attack campaign against financial targets in the region. Even though awareness has been raised, the initial success might motivate other hacking groups to try something similar.

Published under license from ITProPortal.com, a Net Communities Ltd Publication. All rights reserved.

Photo Credit: arda savasciogullari / Shutterstock

Comments are closed.

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.