By Arul Louis
Starved for foreign funds due to UN sanctions, North Korea carried out a $13.5 million cyber heist of Cosmos Bank using a network across 28 countries by breaking its internal safety measures, according to the world body. The Security Council’s panel of experts that monitors the sanctions on North Korea said the cyberattack in August last year was carried out “by an advanced persistent threat group” from that country.
“In August 2018, about $13.5 million was withdrawn from Cosmos Bank in India in more than 14,000 simultaneous automatic teller machine (ATM) withdrawals in 28 countries, as well as in additional transfers to an account belonging to a Hong Kong-based company,” the report said.
The report by the panel of experts headed by Hugh Griffiths was released earlier this month by Council President Francois Delattre. “The Cosmos attack was a more advanced, well-planned and highly coordinated operation that bypassed three main layers of defence contained in International Criminal Police Organization (INTERPOL) banking/ATM attack mitigation guidance,” the report said. Outlining the North Korean tactic, it said, “Not only were the actors able to compromise the SWIFT network in the Cosmos case to transfer the funds to other accounts, but they simultaneously compromised internal bank processes to bypass transaction verification procedures and order worldwide transfers to almost 30 countries where funds were physically withdrawn by individuals in more than 10,000 separate transactions over a weekend.” SWIFT, which stands for Society for Worldwide Interbank Financial Transaction code, identifies banks for international financial transactions. The transfers to the Hong Kong-based company’s account were made using SWIFT, the report said. (IANS)
Also Read: INTERNATIONAL