The group of hackers, to whom security experts attribute a rash of high-profile cyber-attacks against banks that exploited the SWIFT payment network, began earlier than believed.
The organization, which is known as the Lazarus Group made headline earlier this year for hacking an unnamed Philippine bank in October 2015, Vietnam’s Tien Phong Bank in late December 2015, and the Bangladesh Central Bank in February.
According to Eldon Sprickerhoff, co-founder and chief security strategist of Canadian security firm eSentire, one of its clients was first to encounter a version of the malware, which hackers used for the subsequent banking attacks on August 28, 2015.
Eldon Sprickerhoff,
eSentire
“For us, it was just another piece of malware,” he said. “We identified four IP addresses that were acting suspect and blocked those addressed for our client as well as across our entire customer base.”
Proofpoint, a vendor that operates a clearinghouse of cyber-threats, later informed eSentire that the company was first to generate and report a threat signature that was similar to the following fund-transfer cyber-attacks on the banks.
However, this attempted attack was not against a bank, but a registered investment advisor.
Sprickerhoff declined to identify the institution beyond that the RIA was based in New York City and has between $2 and $10 billion of assets under management.
“This was not a top-tier player,” he said. “This happened to a mid-market business.”
Such behavior is becoming more common he said. “When someone comes up with a cyber-attack against financial institutions, they seldom target a single bank. They like to spread out these attacks as wide as possible.”
Prior to these financial attacks, The Lazarus Group is also believed to be the hackers behind the infamous Sony Pictures Entertainment hack in October 2014, according to information published by Kasperky Lab, another cyber-security vendor.Other attacks attributed to these hackers include military espionage and attacks on media and manufacturing firms.
More on Cybersecurity:
- CFTC Weighs Tighter Rules on Algo Traders
- Securing the Enterprise with ‘Big Data’
- Cybersecurity Still a Work in Progress
Featured image by James Thew/Dollar Photo Club
NEWSLETTER SIGN UP
And receive exclusive articles on securities markets
The capital markets media outlet @marketsmedia covered Chainlink x ICE today
ICE, Chainlink to Bring FX & Precious Metals Data Onchain
“Marks a significant milestone on the pathway towards the mainstream adoption of onchain finance.”
Markets Media caught up with Kevin Duggan, Senior Managing Director of Beta and Global Trading at OTPP.
What's your biggest trading tech frustration? 🤔
Celebrating women shaping European finance
European Women in Finance Awards deadline is Aug 23
#WomeninFinance #Finance #WIF
Nominate here: https://www.jotform.com/form/250276204100339
Related articles
We're Enhancing Your Experience with Smart Technology
We've updated our Terms & Conditions and Privacy Policy to introduce AI tools that will personalize your content, improve our market analysis, and deliver more relevant insights.These changes take effect on Aug 25, 2025.
Your data remains protected—we're simply using smart technology to serve you better. [Review Full Terms] | [Review Privacy Policy] By continuing to use our services after Aug 25, 2025, you agree to these updates.
