The unknown hackers disabled the City printer connected to global payments platform SWIFT on Feb. 6, preventing the bank from receiving acknowledgement messages for three fraudulent payment instruction sent that evening until the next morning.
"Nobody suspected that it was an attack and thought it was a systemic network failure," N Kamakodi told Reuters by phone. "The system department people, everybody assembled, analysed the problem, rebooted, they closed shop only around 10-10.30 in the night."
The next morning, bank officials managed to reconcile the previous day's transactions and found out "three transactions which were not originated from our bank".
The bank had been able block only one of the transfers worth $500,000, while attempts were underway to retrieve the rest, he said. It first disclosed the heist on Saturday.
In the case of Bangladesh Bank, hackers infected the system with malware that disabled the SWIFT printer. Bank officials in Dhaka initially assumed there was simply a printer problem.
The hackers stole the money from Bangladesh Bank's account at the Federal Reserve Bank of New York using fraudulent orders on SWIFT. The money was sent to accounts at Manila-based Rizal Commercial Banking Corp and then disappeared into the casino industry in the Philippines.
Nearly two years later, there is no word on who was responsible and Bangladesh Bank has been able to retrieve only about $15 million, mostly from a Manila junket operator.
"We definitely see similarities between the Bangladesh case, and the similarities are being factored into the investigation," Kamakodi said.
City Union, a small private lender based in south India, said the three money transfer instructions were sent via correspondent banks to accounts in Dubai, Turkey and China.
He said SWIFT was helping it investigate the matter, and that the hack happened despite the bank adding new security measures days before.
"It's a cat and mouse game," he said.
SWIFT said it did not comment on individual customers or entities.
Russia's central bank said last week that unknown hackers stole 339.5 million roubles ($6 million) in an attack via the SWIFT international payments messaging system in Russia last year.
One subscription. Two world-class reads.
Already subscribed? Log in
Subscribe to read the full story →
Smart Quarterly
₹900
3 Months
₹300/Month
Smart Essential
₹2,700
1 Year
₹225/Month
Super Saver
₹3,900
2 Years
₹162/Month
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app