The group of hackers, to whom security experts attribute a rash of high-profile cyber-attacks against banks that exploited the SWIFT payment network, began earlier than believed.
The organization, which is known as the Lazarus Group made headline earlier this year for hacking an unnamed Philippine bank in October 2015, Vietnam’s Tien Phong Bank in late December 2015, and the Bangladesh Central Bank in February.
According to Eldon Sprickerhoff, co-founder and chief security strategist of Canadian security firm eSentire, one of its clients was first to encounter a version of the malware, which hackers used for the subsequent banking attacks on August 28, 2015.
Eldon Sprickerhoff,
eSentire
“For us, it was just another piece of malware,” he said. “We identified four IP addresses that were acting suspect and blocked those addressed for our client as well as across our entire customer base.”
Proofpoint, a vendor that operates a clearinghouse of cyber-threats, later informed eSentire that the company was first to generate and report a threat signature that was similar to the following fund-transfer cyber-attacks on the banks.
However, this attempted attack was not against a bank, but a registered investment advisor.
Sprickerhoff declined to identify the institution beyond that the RIA was based in New York City and has between $2 and $10 billion of assets under management.
“This was not a top-tier player,” he said. “This happened to a mid-market business.”
Such behavior is becoming more common he said. “When someone comes up with a cyber-attack against financial institutions, they seldom target a single bank. They like to spread out these attacks as wide as possible.”
Prior to these financial attacks, The Lazarus Group is also believed to be the hackers behind the infamous Sony Pictures Entertainment hack in October 2014, according to information published by Kasperky Lab, another cyber-security vendor.Other attacks attributed to these hackers include military espionage and attacks on media and manufacturing firms.
More on Cybersecurity:
- CFTC Weighs Tighter Rules on Algo Traders
- Securing the Enterprise with ‘Big Data’
- Cybersecurity Still a Work in Progress
Featured image by James Thew/Dollar Photo Club
NEWSLETTER SIGN UP
And receive exclusive articles on securities markets
Pension funds, sovereign wealth funds, endowments and other institutional asset owners are sitting on vast troves of data -- but extracting value from that data is more challenging than ever.
#AssetOwners #DataQuality
Technology costs in asset management have grown disproportionately, but McKinsey research finds the increased spending hasn’t consistently translated into higher productivity.
#AI #Fiance
We're in the FINAL WEEK for the European Women in Finance Awards nominations – don't miss your chance to spotlight the incredible women driving change in finance!
#WomenInFinance #FinanceAwards #FinanceCommunity #EuropeanFinance @WomeninFinanceM
ICYMI: @marketsmedia sat down with EDXM CEO Tony Acuña-Rohter to discuss the launch of EDXM International’s perpetual futures platform in Singapore and what it means for institutional crypto trading.
Read the full interview: https://bit.ly/45xRUWh
Related articles
We're Enhancing Your Experience with Smart Technology
We've updated our Terms & Conditions and Privacy Policy to introduce AI tools that will personalize your content, improve our market analysis, and deliver more relevant insights.These changes take effect on Aug 25, 2025.
Your data remains protected—we're simply using smart technology to serve you better. [Review Full Terms] | [Review Privacy Policy] By continuing to use our services after Aug 25, 2025, you agree to these updates.
