Skip to main content

$10 switches cost Bangladesh’s central bank $81 million

Network Switch
Image used with permission by copyright holder
There may be a time and a place for frugality, but not when it comes to bank security. This was made shockingly clear in a case where $10 switches cost Bangladesh’s central bank a stunning $81 million in a hack that experts are attributing, to some degree, to stinginess. An investigation into one of the largest cyber heists in history has revealed that the bank was left exposed to attacks because it was completely devoid of a firewall, and worse yet, “used secondhand, $10 switches.”

Experts say that poor security and hardware both contributed to the massive money loss, and in particular, the $10 routers have made it more difficult for investigators like Mohammad Shah Alam, head of the Forensic Training Institute of the Bangladesh police’s criminal investigation department, to do their jobs. Alam notes that the switches “collected very little network data that could be used to pinpoint the hackers and shed light on their tactics.”

Back in February, hackers were able to gain access to the core network of the Bangladeshi bank, and took advantage of this opportunity to move cash from Bangladesh’s accounts at the Federal Reserve Bank of New York to their own accounts. Apparently, the only reason that the attackers weren’t able to make off with more (think billions rather than millions of dollars) was a spelling mistake — bank staff noticed the typos and prevented any further damage. Authorities say that the majority of the funds have yet to be found.

Security experts seem horrified by the blatant lack of protection measures the central bank took to guard against such attacks. “You are talking about an organisation that has access to billions of dollars and they are not taking even the most basic security precautions,” Jeff Wichman, a consultant with cyber firm Optiv, told Reuters. Worse yet, there may be other banks in the world that are similarly unprepared.

Also taking some blame for the heist is global payment network SWIFT, to which the Bangladesh bank’s networks were connected. “It was their responsibility to point it out but we haven’t found any evidence that they advised before the heist,” Alam said of the payment network. SWIFT has only said that the attack was the result of “an internal operational issue at Bangladesh Bank,” and that its own core messaging services were not affected.

Regardless, the magnitude of this breach may finally convince other financial institutions to improve their own security practices, and not pinch pennies at the risk of losing millions.

Lulu Chang
Former Digital Trends Contributor
Fascinated by the effects of technology on human interaction, Lulu believes that if her parents can use your new app…
Google is testing a feature that will let AI hide away internet pop-ups
Google Chrome browser running on Android Automotive in a car.

Google is testing a new feature in Chrome Canary, the experimental version of the Chrome browser. As reported by TechRadar, the "PermissionsAI" feature is designed to deal with pop-ups from websites asking you to share your location or consent to notifications.

According to Chromium, the tool will use Google's "Permission Predictions Service" and Gemini Nano v2 to analyze users' previous responses to pop-ups and guess how they will respond to new ones. If you're likely to decline, the feature will block the annoying pop-up that appears in the middle of your screen and instead hide it away in a corner in case you need it later.

Read more
AMD’s Ryzen Z2 Go disappoints in early benchmark
The Lenovo Legion Go S sitting on a window.

A recent YouTube video has showcased the gaming capabilities of AMD's upcoming Ryzen Z2 Go chipset, designed for budget gaming handhelds. As part of the new Ryzen Z2 lineup, the Z2 Go’s capabilities were tested on a Lenovo Legion Go S and compared to last year’s Z1 Extreme powering the Asus ROG Ally X.

According to gaming performance data shared by FPS VN, the Z2 Go shows some limitations compared to the Z1 Extreme. In Black Myth: Wukong, it achieved 36 fps versus 40 fps at 15W, 30 fps versus 32 fps at 20W, and 60 fps versus 64 fps at 30W. In Cyberpunk 2077, the Z2 Go delivered 50 fps compared to 54 fps at 15W, 45 fps versus 47 fps at 20W, and 61 fps compared to 66 fps at 30W. Similarly, in Ghost of Tsushima, the Z2 Go hits 62 fps versus 66 fps at 15W, 48 fps versus 52 fps at 20W, and 62 fps versus 66 fps at 30W. Although the performance gap is minor, it remains consistent at around 7–10% across all tested games.

Read more
When you sign up for two years of Surfshark you’ll get 10GB of roaming data for free!
Surfshark displayed on multiple devices including a smartphone, tablet, and laptop screen.

Investing in a VPN for your Wi-Fi network is one of the best ways to mask your IP address from those looking to gain control of your personal data, device logins, and other sensitive info. Fortunately, there’s a new VPN-masking service born every day, but not all of these services offer are worth your hard-earned cash. Instead, you should focus on vetted and reliable platforms like Surfshark.

As luck would have it, Surfshark is even offering a promo for new customers: For a limited time, when you sign up for two years of Surfshark One or Surfshark One+, you’ll get 10GB of Saily eSIM roaming data for free. We tested Surfshark not long ago, and reviewer Alan Truly said: “Surfshark is a fast streaming VPN that let me connect an unlimited number of devices, making it a great choice to protect privacy and unblock worldwide streaming for the whole family.” We've also reviewed Surfshark's anti-virus protection suite.

Read more