SWIFT to unveil new security plan in the wake of Bangladesh heist

The SWIFT secure messaging service that underpins international banking says it plans to launch a new security program as it fights to rebuild its reputation in the wake of the Bangladesh Bank heist, reports http://www.zdnet.com.

The Society for Worldwide Interbank Financial Telecommunication’s (SWIFT) chief executive, Gottfried Leibbrandt, is expected to tell a financial services conference in Brussels that SWIFT will launch a five-point plan later this week.

SWIFT is a Belgium-based co-operative which is owned by its users, with banks around the world sending payment instructions to one another via SWIFT messages.

In February, the SWIFT system of the Bangladesh central bank was hacked into, with thieves sending messages to the Federal Reserve Bank of New York that allowed them to steal $81 million.

After learning how the organisation worked, the group of cyberattackers stole the Bangladeshi bank’s SWIFT code and made a series of transaction requests for cash to be sent from the country’s New York-based account to entities across Asia, mainly the Philippines and Sri Lanka.

The group had installed malware in systems at the banks’ Dharka headquarters, which allowed them to spend several weeks spying upon the bank’s systems and processes.

The breach was uncovered by accident, with an alert only raised as a result of a small spelling error on one of the transactions which blocked other queries that had not yet been processed.

It emerged last week that those behind the heist actually targeted the computer of a Bangladeshi official to conduct the theft.