© 2024 Kansas City Public Radio
NPR in Kansas City
Play Live Radio
Next Up:
0:00
0:00
0:00 0:00
Available On Air Stations

North Korea Linked To $81 Million Bangladesh Bank Heist

People walk past a TV screen showing a poster of Sony Picture's "The Interview" in a news report, at the Seoul Railway Station in Seoul, South Korea. The FBI says North Korea hacked into Sony Pictures computer systems as retribution for the film.
Ahn Young-joon
/
AP

As if an $81-million-dollar bank heist wasn't spectacular enough, it now appears that the crime may mark the first time one country has used malicious code to steal money from another country.

The link to North Korea was made by security researchers at the firm Symantec. In looking into the attack on the bank in Bangladesh, the researchers found a rare piece of code that has only ever been found in two other hacker attacks: Sony Pictures in December 2014, and media companies in South Korea in 2013. The FBI has said North Korea was responsible for the Sony Pictures attack.

In a blog post, the Symantec researchers write about the hacker code that was common to the bank heists and the Sony Pictures hack:

Backdoor.Contopee has been previously used by attackers associated with a broad threat group known as Lazarus. Lazarus has been linked to a string of aggressive attacks since 2009, largely focused on targets in the US and South Korea. The group was linked to Backdoor.Destover, a highly destructive Trojan that was the subject of an FBI warning after it was used in an attack against Sony Pictures Entertainment. The FBI concluded that the North Korean government was responsible for this attack.

The New York Times quotes Eric Chien with Symantec: "If you believe North Korea was behind those attacks, then the bank attacks were also the work of North Korea."

Researchers with Symantec and the British defense contractor BAE Systems both now say they see links between the Bangladesh bank heist and cyber-attacks on banks in Vietnam and Ecuador. In all 3 attacks on those banks, the hackers were able to compromise the security of what's known as the SWIFT messaging system - what was thought to be the world's most secure system for sending orders for financial transactions.

Copyright 2020 NPR. To see more, visit https://www.npr.org.

NPR correspondent Chris Arnold is based in Boston. His reports are heard regularly on NPR's award-winning newsmagazines Morning Edition, All Things Considered, and Weekend Edition. He joined NPR in 1996 and was based in San Francisco before moving to Boston in 2001.
KCUR prides ourselves on bringing local journalism to the public without a paywall — ever.

Our reporting will always be free for you to read. But it's not free to produce.

As a nonprofit, we rely on your donations to keep operating and trying new things. If you value our work, consider becoming a member.