A cyber attack on Union Bank of India last July is reportedly similar to pattern and technique with the cyber theft last year of more than $81 million from the Bangladesh central bank’s account at the New York Federal Reserve.
The attack at UBI began after an employee opened an email attachment releasing malware that allowed hackers to steal the state-run bank’s data, the Wall Street Journal reported on Monday.
The opening of the email attachment, which looked like it had come from the Reserve Bank of India (RBI), initiated the malware that hackers used to steal Union Bank’s access codes for the Society for Worldwide Interbank Financial Telecommunication (SWIFT), a system that lenders use for international transactions, the paper reported.
Read | Cyber security operations centre to be set up soon, says Ravi Shankar Prasad
According to the reports, the codes were used to send transfer instructions for about $170 million to a Union Bank account at Citigroup Inc in New York.
Union Bank had traced the money trail and blocked the movement of funds.
SWIFT late last year said that some banks using its system had been attacked after the Bangladesh heist, the Journal said, but did not specifically name Union Bank of India.
Union Bank Chairman Arun Tiwari told the WSJ that SWIFT officials had been working with the bank since the day of the cyber attack.
SWIFT declined to comment.