Skip to main content

Billion dollar bank heist foiled by one spelling mistake

bangladeshi bank heist foiled by spelling mistake internet hacking dark net
Image used with permission by copyright holder
Proofing your work is important. We’ve known that since school days, but you would think when you have the chance to swipe a billion dollars in an international bank heist, you’d make sure you dotted all the i’s and crossed all the t’s. That didn’t happen in the case of one hacking group though, which made away with a comparatively paltry $80 million because they made a spelling mistake when transferring the ill gotten gains.

The hack in question took place at the start of February and targeted Bangladesh’s central bank, which was breached in a manner that did not initially raise any suspicion. The hackers then used that official channel to contact the Federal Reserve Bank of New York, and began issuing transfer orders that sent millions overseas.

Requests successfully directed over $80 million to accounts in the Philippines and Sri Lanka, with further planned payments of over $850 million. However one $20 million payment request was flagged by the routing bank, Deutsche Bank, when it was noticed that the name of the recipient organization, Shalika Foundation, was spelled “fandation” (as per the Guardian).

Related: Department of Defense recruits white hats for ‘Hack the Pentagon’ program

With that request flagged, all others were halted as a routine security measure and it was soon discovered that these transactions were anything but approved by the Bangladeshi bank. Some of the sums were also noted for their surprising size, though individually that may not have been enough to manually vet the transfers.

The Bangladeshi bank holds billions of dollars with the Federal Reserve and could potentially have seen much of it disappear if this spelling mistake had not triggered a further inquiry.

Now, more than a month on from the hack, officials at the Bangladeshi bank say that they have been able to recover some of the funds, but that there are still many millions outstanding. Moreover, it’s still not entirely sure how the bank was hacked in the first place.

The bank sees it as extremely unlikely that those who perpetrated the hack will ever be caught, suggesting that this was a highly successful digital attack. Although the nationality of the thieves is unknown, they are thought to originate from outside of Bangladesh.

Suggestions from security analysts indicate that the hack would have required intimate knowledge of the Bangladeshi bank’s internal systems, so it’s possible someone on the inside was either involved, or that the bank’s information was otherwise compromised.

Editors' Recommendations

Jon Martindale
Jon Martindale is the Evergreen Coordinator for Computing, overseeing a team of writers addressing all the latest how to…
Can you use the Surface Pen with the Surface Laptop Studio 2?
New Surface Laptop Studio 2 with a Surface Pen.

The Surface Pen is an excellent accessory for the Surface Laptop Studio 2, and yes, it works well with it. You can use the Surface Pen on the Surface Laptop Studio 2 for all kinds of tasks, from note-taking to doodlin, and sketching. The screen of the next-gen Surface Laptop Studio might be the same as the last one, but it still really lends itself to that sort of nuanced interaction, letting you get pixel-perfect drawing and writing from the Surface Pen.

Th Pen is still magnetic too, so it's always on hand when you need it.

Read more
Microsoft Bing and Edge are getting a big DALL-E 3 upgrade
Microsoft Copilot comes to Bing and Edge.

Microsoft Copilot is coming to Bing and Edge Microsoft

You'll soon be hearing more about Microsoft Copilot and Bing Image Creator as these innovative technologies come to Microsoft Edge and Bing. The news of their arrival was delivered at Microsoft's Surface Event, along with several more AI and hardware announcements.

Read more
I tested Nvidia’s DLSS 3.5, and it transforms ray tracing (for a select few)
Reflections on the street in Cyberpunk 2077.

Nvidia's Deep Learning Super Sampling (DLSS) is getting a huge boost. The new DLSS 3.5 update adds a feature called Ray Reconstruction to the suite, and it promises to make ray tracing more realistic than ever before. I've tested it, and Nvidia was telling the truth.

Ray Reconstruction brings ray tracing to new heights of realism, and it's a fantastic addition to the DLSS suite. Even better, it works across all RTX graphics cards, unlike Nvidia's DLSS Frame Generation. However, there could be a problem with support as we see more games release with the feature. Ray Reconstruction may work with any RTX GPU, but it could be a feature that's only realistic for intensive ray tracing that requires one of the latest and greatest GPUs.
What ray tracing should be

Read more