The malware used in February’s $81 million heist at a Bangladesh Bank is linked to the 2014 Sony hack, according to a new report from cyber security firm BAE Systems.
“What initially looked to be an isolated incident at one Asian bank turned out to be part of a wider campaign,” the press release states, according to Reuters.
While BAE is not one of the security firms Bangladesh Bank hired to help after the heist, the security firm found malware by searching through archives that collect samples of malicious files.
The same malware was used in other cyber attacks as well, according to BAE, including an attack on a Vietnamese commercial bank, presumably making fraudulent transfer requests. A distinctive computer code was used to erase the tracks of hackers in the cyber attacks on the banks as well as on Sony.
The report claimed that the malware used to target the Bangladesh Bank had “the same unique characters” as software used in “Operation Blockbuster,” which was a campaign that dates back to at least 2009 and includes the Sony breach.
Similarities include encryption keys and names of programming elements, according to the report.
In November 2014, a hacker group going by the name of “Guardians of Peace” hacked into the network of Sony Pictures of Entertainment and released confidential data, including personal information about employees, emails between employees, information about executive salaries and copies of then-unreleased Sony films.
The hackers demanded the cancellation of the film, “The Interview,” a comedy about a plot to assassinate North Korean leader Kim Jong-un starring Seth Rogen and James Franco. In an effort to do damage control, Sony quickly pulled the movie, eventually releasing it on Netflix and select theaters. After evaluating the software, U.S. intelligence agencies determined North Korea was the source of the attack.
And in February, hackers issued five successful transactions via the SWIFT network totaling $101 million, withdrawn from a Bangladesh Back account at the Federal Reserve Bank of New York. However, $20 million of thatwas traced to Sri Lanka and has since been recovered. The heist sought to steal $951 million, but the New York bank blocked the remaining transactions amounting to an estimated $850 million.
Adrian Nish, BAE’s head of threat intelligence, told Reuters that the company had not determined who was behind the attacks. BAE also said that their report might be hit with scrutiny given that the White House has pinned the Sony attacks on North Korea.
Sony Hack Attack Timeline: From First Cyberbreach and Leaks to 'The Interview' Release (Photos)
As Sony CEO Michael Lynton announces his resignation, let's look back at one of the darkest periods of his tenure: the Sony hack.
News of a massive cyberbreach at Sony Pictures began leaking out in late November. Later reports indicated the studio had been warned weeks earlier.
NOV. 24: The hacker group identified as #GOP purportedly took over computers and hijacked Twitter accounts, sending out ominous messages to Sony staff. Read more.
NOV. 25: Sony Pictures employees greeted with an ominous image on their computer screens when they tried to log in for the work week. Read more.
NOV. 28: Sony struggles to fight #GOP hackers who claim stolen data includes stars’ IDs, budget and contract figures. Read more.
NOV. 30: Investigators know North Korea is unhappy with comedy "The Interview," which makes light of an attempt to assassinate its leader Kim Jong-un. Read more.
DEC. 1: Studio has made progress in restoring critical business systems, insider says at the time. Later reports dispute this. Read more.
DEC. 1: Hack analysis: How much will this ‘nightmare’ cost? Damage to Sony’s reputation will be key in determining the cybercrime’s toll. Read more.
DEC. 1: Blogger posts a spreadsheet of the top 17 executives earning $1 million or more. Read more.
DEC. 1: North Korea denies involvement. A government official previously teased “wait and see.” Read more.
DEC. 2: Sony bosses Michael Lynton and Amy Pascal address "malicious criminal acts" in a company-wide memo to staff. Read more.
DEC. 2: Media outlets obtain spreadsheets including social security numbers and detailed performance reviews for 3,000 Sony Pictures employees. Read more.
DEC. 2: When asked if North Korea was involved, a spokesman for the communist country’s government replied, “Wait and see.” Read now.
DEC. 3: Salaries of ‘The Interview’ stars Seth Rogen and James Franco revealed in Sony hacking leak. Read more.
DEC. 4: Hollywood studios ramp up security in wake of Sony hack. Read more.
DEC. 4: North Korea reportedly denies involvement in Sony hack attack. Read more.
DEC. 4: Sylvester Stallone, Judd Apatow are among 47,000 employees compromised in latest leak. Read more.
DEC. 6: Sony Hack Attack "unparalleled," says head of cybersecurity firm. Read more.
DEC. 7: Sony hackers reportedly worked from Thailand and may have North Korean ties. Internet leaks of confidential data traced to a five-star Bangkok hotel. Read more.
DEC. 8: Sony hackers demand ‘The Interview’ pulled: "Stop immediately showing the movie of terrorism." Read more.
DEC. 8: FBI plan to hold employee cybersecurity awareness briefings on the Sony studio lot. Read more.
DEC. 8: Hackers sent top Sony execs a threatening email days before the attack. Read more.
DEC. 8: Hack exposes celebrity aliases for Tom Hanks, Jude Law, Natalie Portman and more in latest leak. Read more.
DEC. 8: Hackers leak sensitive email of Sony execs Amy Pascal and Steven Mosko. Read more.
DEC. 9: Hackers reveal animated ‘Spider-Man’ comedy in the works. Read more.
DEC. 9: Heated emails between Sony Chief Amy Pascal and Scott Rudin leaked. Read more.
DEC. 10: FBI says attack so sophisticated that it would have gotten past "90 percent" of security firms. Read more.
DEC. 11: Sony hack attack theory suggests North Korea was involved but had insider help. Read more.
DEC. 11: Amy Pascal and Scott Rudin apologize for racially insensitive remarks about President Obama. Read more.
DEC. 11: Kevin Hart responds to leaked Sony emails calling him a ‘whore.’ Read more.
DEC. 11: Hackers flash disturbing new warning on staffers’ computers. Read more.
DEC. 11: Amy Pascal talks to Sharon Waxman about whether she's so damaged she can no longer lead Sony (exclusive). Read more.
DEC. 11: Sony had evidence of server breach as early as February. Read more.
DEC. 12: Sony orders its name removed from "The Interview" marketing materials. Read more.
DEC. 12: Sony arm Crackle pulls hacker movie "The Throwaways." Read more.
DEC. 14: Sony demands media stop publishing stolen data. Read more.
DEC. 14: Producers reveal hackers stole James Bond "Spectre" script. Read more.
DEC. 15: Lawyer's letter confirms "The Interview" was the cause of hack attack. Read more.
DEC. 16: Sony hackers threaten 9/11-style attack on theaters that show "The Interview." Read more.
DEC. 16: James Franco and Seth Rogen withdraw from press interviews for "The Interview." Read more.
DEC. 16: Sony tells theaters they can pull "The Interview." Read more.
DEC. 16: Carmike theater chain drops "The Interview" after hacker terror threat. Read more.
DEC. 16: ArcLight Cinemas drops "The Interview" amid hacker threats. Read more.
DEC. 16: Sony CEO Michael Lynton's emails leaked. Read more.
DEC. 16: Former Sony employees file class-action suit against studio. Read more.
DEC. 16: Landmark Theaters cancels "Interview" New York premiere. Read more.
DEC. 17: Bow Tie Cinemas drops "The Interview." Read more.
DEC. 17: Judd Apatow says, "I am going to 'The Interview.'" Read more.
DEC. 17: Rosie O'Donnell says she will not see "The Interview." Read more.
DEC. 17: Five major theater chains pull "The Interview." Read more.
DEC. 17: Sony Pictures cancels release of "The Interview." Read more.
DEC. 17: Hollywood outraged at decision to pull "The Interview." Read more.
DEC. 17: Per CNN, US Government to announce North Korea was behind Sony hack. Read more.
DEC. 17: What are U.S. options if North Korea is confirmed as cyberterrorist? Read more.
DEC. 17: Steve Carell’s North Korea movie "Pyongyang" canceled in wake of Sony hack. Read more.
DEC. 17: Rob Lowe, Judd Apatow, Michael Moore and others express their outrage on social media. Read more.
DEC. 18: Paramount thwarts plans by theaters to replace ‘The Interview’ with "Team America: World Police" Read more.
DEC. 18: Newt Gingrich, Mitt Romney, Rep. Peter King and Colin Powell weigh in on the cancelation of "The Interview. Read more.
DEC. 19: FBI officially implicates North Korea in Sony hack Attack. Read more.
DEC. 19: New Sony leak reveals 50 scripts from Michael Lynton’s inbox. Read more.
DEC. 20: North Korea denies involvement in hack attack, warns U.S and offers to join joint probe. Read more.
DEC. 20: Sony deletes "The Interview’s" social media profiles in wake of hack, movie’s cancellation. Read more.
DEC. 20: Mike Myers returns to Saturday Night Live, reprising his Dr. Evil role from “Austin Powers” to deliver some advice regarding the hack. See more.
DEC. 20: RNC chair Reince Priebus sends a letter urging the CEOs of 10 major theater chains to screen “The Interview.” Read more.
DEC. 21: President Obama insists on CNN that the Sony hack is "cyber vandalism," not "act of war." Watch more.
Dec. 21: Sony attorney says "The Interview" will be distributed despite hackers’ threats. Watch more.
DEC. 22: Security experts register doubts about North Korean involvement in hack. Read more.
DEC. 22: Sony threatens Twitter with lawsuit if additional "stolen information" appears on the service. Read more.
1 of 68
As Sony CEO Michael Lynton prepares to exit, here’s TheWrap’s blow-by-blow of 2014’s devastating cyberattack on the studio
As Sony CEO Michael Lynton announces his resignation, let's look back at one of the darkest periods of his tenure: the Sony hack.
