Bangladesh Bank remains compromised months after heist-forensics report
DHAKA, Reuters, May 13 - Three hacking groups “are still lurking” in the network of Bangladesh's central bank, putting the bank at risk of further attacks about three months after it lost $ 81 million in a cyber- heist, according to a report by U. S. computer security firms investigating the theft.
“There are some residual risks that the governor and board should understand, namely that Bangladesh Bank network is still not secure, and there exists a possibility of malicious acts by hackers,” said the report from the experts hired by Bangladesh Bank, parts of which were seen by Reuters.
The source who shared the docu- ment declined to provide access to its full contents, saying that the release of some details could hamper a multinational effort to catch the criminals and recover funds stolen in the February cyber- attack.
Bangladesh Bank has declined comment on pending investigations into the heist. Asked about the report, a spokesman said: “We have engaged forensic experts to investigate the whole thing, including this.” He did not elaborate.
Investigators have determined that one team of hackers, dubbed Group Zero in the report, was responsible for the heist and remained inside the net- work, the report stated. Group Zero may be seeking to monitor the ongoing cyber investigations or cause other damage, but is unlikely to be able to order fraudulent fund transfers, the investigators wrote.
Two other groups are also inside the bank's network, which is linked to the SWIFT international transaction system, the report found. One of the two is a “nation- state actor” engaged in stealing information in attacks that are stealthy but “not known to be destructive”, the report said.
The report, which was submitted earlier this month, did not further identify any of the groups.