Software, printer problems delayed discovery of Bangladesh heist

Startling find: A glitch with a printer that was set up to automatically print all Swift wire transfers was discovered.

DHAKA: The cyber thieves who stole US$81mil (RM330.4mil) from Bangladesh Bank appear to have hid their tracks by manipulating a central bank computer and printer that connect to the Swift messaging system to hide evidence of the heist, according to a report filed with local police.

The report, filed by two central bank officials on Tuesday evening, said that a computer the bank uses to order Swift wire transfers was manipulated so that authorities could not see records of outgoing wire transfer requests or receipts confirming that they had been received.

Details about the issues with the computer and printer were among the first clues to surface as to how the attack was carried out.

The computer is supposed to keep those records so they can be easily reviewed by bank staff, according to the report.  

The officials saw the first signs that something was off on Feb 5, when they noticed a glitch with a printer that is set up to automatically print all Swift wire transfers.

When they identified that the previous day's transactions had not been printed, they attempted to manually print them but were unable to do so, according to the report, which was reviewed by Reuters.

One official asked that the printer be repaired before leaving the office that day, which was a Friday and the first day of the weekend in Bangladesh. Other bank employees later decided to wait until the next day to fix it, according to the report.

When the officials tried to access the computer the bank uses to send Swift messages, they got messages saying a file NROFF.EXE "is missing or changed.”

They were eventually able to access the Swift messaging system on Feb 8 and print out messages after obtaining clearance to use other means to access the system from senior bank officials.

When they printed the Swift messages there were three from the New York Fed seeking information about several suspicious transactions, which flagged them to the heist that this week resulted in the ouster of the central bank's governor.

A representative from Brussels-based Swift, a bank-owned cooperative that runs a secure private messaging system widely used for requesting money transfers, declined comment on Wednesday.

Swift last week issued a statement saying that it was working with Bangladesh's central bank "to resolve an internal operational issue at the central bank." It added that "Swift’s core messaging services were not impacted by the issue and continued to work as normal." —  Reuters

Article type: metered
User Type: anonymous web
User Status:
Campaign ID: 46
Cxense type: free
User access status: 3

Next In Tech News

US lawmakers, wary of Big Tech, propose antitrust overhaul
Exclusive-Toshiba's No.2 shareholder calls for immediate resignation of board chair, 3 directors
Migrant school forced online by Covid unites children on Mexico border
After phone boxes, charging points may become new icon of Britishness
'Retro Machina': help a robot flee the scrap yard
Gaming makes you better at perceiving amounts of things, study shows
Amazon raises minimum pay in Germany to 12 euros per hour
Toshiba board to hold emergency meeting on Sunday, sources say
Bitcoin falls 5.71% To $35,210
Clean-energy giant Invenergy suffers hack claimed by REvil

Stories You'll Enjoy