Professional Documents
Culture Documents
• This attack was the biggest ever, damaging and well planned
in the history of the Banking Industry.
How the attack was carried out?
• The core banking system of the bank receives debit card payment requests via a ‘switching
system’. During the malware attack, a proxy switch was created and all the fraudulent
payment approvals were passed by the proxy switching system.
• Again, total Rs.13.92 crore was transferred fraudulently to the account of M/s. ALM Trading
Limited having account with Hang Seng Bank, Hong Kong through cyber-attack on SWIFT
Payment Gateway.
Financial • Due to this incident, doubts and fear was raised in the
minds of customers regarding the position of the bank
• Immediate action was taken, and the bank requested Hang Seng Bank in Hong Kong to hold
the amount. With the assistance of Hong Kong Police and the judicial support bank
recovered Rs.8 crore.
• Police said most of those arrested were mainly involved in withdrawing money from
different ATMs using cloned cards of Cosmos Bank, as per instructions from handlers. Police
suspect that racketeers gave them some part of the money they withdrew as commission.
What bank did later to
improve the security
• After this incident as per instructions of forensic investigators, the Bank has
implemented security measures for ATM Switch Server and SWIFT Server for
Cyber Security.
• Series of training were conducted for improving the cyber security awareness
of all the employees.
• Bank has started using Next Generation Endpoint Protection Solution instead
of traditional Anti-Virus Solution to neutralize advanced and resilient virus.
Thank you