Security Alerts & News
by Tymoteusz A. Góral

History
#833 Symantec: SWIFT attackers’ malware linked to more financial attacks
Symantec has found evidence that a bank in the Philippines has also been attacked by the group that stole US$81 million from the Bangladesh central bank and attempted to steal over $1 million from the Tien Phong Bank in Vietnam.

Malware used by the group was also deployed in targeted attacks against a bank in the Philippines. In addition to this, some of the tools used share code similarities with malware used in historic attacks linked to a threat group known as Lazarus. The attacks can be traced back as far as October 2015, two months prior to the discovery of the failed attack in Vietnam, which was hitherto the earliest known incident.

The attack against the Bangladesh central bank triggered an alert by payments network SWIFT, after it was found the attackers had used malware to cover up evidence of fraudulent transfers. SWIFT issued a further warning, saying that it had found evidence of malware being used against another bank in a similar fashion. Vietnam’s Tien Phong Bank subsequently stated that it intercepted a fraudulent transfer of over $1 million in the fourth quarter of last year. SWIFT concluded that the second attack indicates that a “wider and highly adaptive campaign” is underway targeting banks.

A third bank, Banco del Austro in Ecuador, was also reported to have lost $12 million to attackers using fraudulent SWIFT transactions. However, no details are currently known about the tools used in this incident or if there are any links to the attacks in Asia.
Read more
#838 “Forbidden attack” makes dozens of HTTPS Visa sites vulnerable to tampering
#837 Google's Chrome 51: Less battery drain from video, simpler site logins - plus 42 bug fixes
#836 Symantec: Android threats evolve to handle Marshmallow’s new permission model
#835 Amazon users targets of massive Locky spear-phishing campaign
#834 Virtual assistants such as Amazon's Echo break US child privacy law, experts say
#833 Symantec: SWIFT attackers’ malware linked to more financial attacks
#832 Tor to use never-before-seen distributed RNG to generate truly random numbers
#831 Microsoft may ban your favorite password
#830 US nuclear force 'still uses floppy disks'
#829 SAS: Big data is a big miss when it comes to IoT
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12