Symantec: SWIFT Malware Evident in Other Bank Attacks | Hacked: Hacking Finance


Symantec: SWIFT Malware Evident in Other Bank Attacks

Posted on .

Symantec: SWIFT Malware Evident in Other Bank Attacks


This article was posted on Thursday, 20:17, UTC.

Security firm Symantec has claimed that the malware used in the $81 million cyberheist from Bangladesh Central Bank’s Federal Reserve account has been linked to another cyberattack – a Philippines-based bank.

// -- Discuss and ask questions in our community on Workplace. Don't have an account? Send Jonas Borchgrevink an email -- //

In a blog post today, Symantec said it found evidence that a bank in the Philippines was also the target of the group that instigated the infamous $81 million cyberheist from Bangladesh central bank.

Notably, the security firm stated that the malware used in the Bangladesh bank heist was also used in a series of targeted attacks against an unnamed bank in the Philippines. Furthermore, the same group had, according to Symantec, tried to steal over $1 million from Vietnam bank Tien Phong Bank.

The attacks can be traced back as far as October 2015, with the malware used bearing similarities to those wielded by a cyberthreat group known as Lazarus.

// -- Become a yearly Platinum Member and save 69 USD and get access to our secret group on Workplace. Click here to change your current membership -- //

Lazarus is perhaps most infamously known for being linked to the Trojan that is suspected to have infiltrated and wrecked havoc due to the cyber attack against Sony Pictures Entertainment. Such was the impact of the breach that it added to the strained diplomatic relationship between North Korea and the United States, with the FBI claiming that the latter was involved in the hack.

The White House even said, through a spokesman, that the North Korean government should compensate Sony for the damages caused by the attack.

Attackers’ Tools

In the course of its investigation, Symantec identified three strains of malware used in ‘limited’ targeted attacks against South-East Asian financial companies. The firm drew a link between one of the three strains, Backdoor.Contopee, with the malware used in the Bangladesh attack – Trojan.Banswift.

Samples of the Trojan.Banswift malware strain were analyzed and a file-erasing code was discovered. The distinctive code bore resemblance with other malware families, Symantec deduced.

In its blog, it stated:

Symantec believes distinctive code shared between families and the fact that Backdoor.Contopee was being used in limited targeted attacks against financial institutions in the region, means these tools can be attributed to the same group.

Important: Never invest money you can't afford to lose. Always do your own research and due diligence before placing a trade. Read our Terms & Conditions here.

Feedback or Requests?

Samburaj Das

Samburaj Das

Samburaj is the contributing editor at Hacked and keeps tabs on science, technology and cyber security.

There are no comments.

View Comments (0) ...
The team:
Dmitriy Lavrov
Dmitriy Lavrov is a professional trader, technical analyst and money manager with 10 years of trading experience. He covers Forex, Commodities and Cryptocurrencies. He is among the top 10 most Read More
Jonas Borchgrevink
Jonas Borchgrevink is the founder of and He is a serial entrepreneur, trader and investor. He shares his own personal journey on // -- Discuss and ask Read More
Mate Csar
Trader and financial analyst, with 10 years of experience in the field. An expert in technical analysis and risk management, but also an avid practitioner of value investment and passive Read More
Mati Greenspan
Senior Market Analyst at // -- Discuss and ask questions in our community on Workplace. Don't have an account? Send Jonas Borchgrevink an email -- // Important: Never invest Read More
Rakesh Upadhyay
Rakesh Upadhyay is a Technical Analyst and Portfolio Consultant for The Summit Group. He has more than a decade of experience as a private trader. His philosophy is to use Read More
Pamela Meropiali
Account Manager
Pamela Meropiali is responsible for users on // -- Discuss and ask questions in our community on Workplace. Don't have an account? Send Jonas Borchgrevink an email -- // Read More
Joseph Young
Joseph Young is a finance and tech journalist & analyst based in Hong Kong. He has worked with leading media and news agencies in the technology and finance industries, offering Read More
The United States National Intelligence Director, James Clapper, has hinted…