FireEye Inc., another cybersecurity firm, described a similar series of attacks in a report published about five months ago. (Photo: Shutterstock)
(Bloomberg) — It's a short — but startling — passage tucked inside Microsoft Corp.'s periodic cybersecurity report: State-sponsored hackers attacked several financial services firms and stole “large sums of cash.”
The account provides another reminder that hackers are successfully preying on parts of an industry where customer confidence is paramount, and that's sometimes reluctant to disclose serious attacks.
Yet even as the report lays out what happened, it omits sensitive details, such as which government backed the assault or which firms were targeted.
Microsoft said it knows about the case because its experts helped victims in the aftermath.
In a series of similar incidents, hackers gained administrative access to computer systems by infecting a machine with a “highly targeted, obfuscated backdoor implant,” possibly with a spear-phishing email.
Then they sent cash to foreign accounts. In some instances, the hackers went undetected for more than 100 days, and once found, unleashed malware on the victims' systems, halting operations.
FireEye Inc., another cybersecurity firm, described a similar series of attacks in a report published about five months ago. A Microsoft spokesman declined to comment on whether the incidents are related.
In that report, FireEye said a North Korean hacking group had infiltrated more than 16 firms in 11 countries including the U.S., stealing more than $100 million. The group's victims included a Chilean bank that lost $10 million last May. North Korean diplomats and official media have denied that the country plays any role in cyberattacks.
READ MORE:
Copyright 2019 Bloomberg. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.
Complete your profile to continue reading and get FREE access to BenefitsPRO, part of your ALM digital membership.
Your access to unlimited BenefitsPRO content isn’t changing.
Once you are an ALM digital member, you’ll receive:
- Breaking benefits news and analysis, on-site and via our newsletters and custom alerts
- Educational webcasts, white papers, and ebooks from industry thought leaders
- Critical converage of the property casualty insurance and financial advisory markets on our other ALM sites, PropertyCasualty360 and ThinkAdvisor
Already have an account? Sign In Now
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
