Russian hackers had months-long access to Denmark's central bank


Level 85
Thread author
Honorary Member
Top Poster
Content Creator
Malware Hunter
Aug 17, 2014
Russian state hackers compromised Denmark’s central bank (Danmarks Nationalbank) and planted malware that gave them access to the network for more than half a year without being detected.

The breach was part of the SolarWinds cyber espionage campaign last year that the U.S. attributed to the Russian Foreign Intelligence Service, the SVR, through its hacking division commonly referred to as APT29, The Dukes, Cozy Bear, or Nobelium.
“The Solarwinds backdoor in Danmarks Nationalbank was open for seven months, before the attack was detected by coincidence by the American IT-security company Fire Eye [sic]” - Version2
In an email statement for Version2, the bank admitted that it was affected by the SolarWinds supply-chain attack and that it took action immediately after learning of the compromise.

“Action was taken quickly and consistently in a satisfactory manner, and according to the analyzes performed, there were no signs that the attack has had any real consequences” - Denmark Central Bank


Staff Member
Malware Hunter
Jul 27, 2015
Unknown access to a countries central bank for 7 months is extreme and very dangerous not just for that specific country, but also to it's citizens. I fully understand that the bank try it's best to sort of downplay and make this problem less then it actually is, but Denmark is a part of EU. Will be interesting to see if EU and it's available legal options will work in this case. I can guess, probably not.

I wouldn't be surprised if more hacked info on other banks in Scandinavia suddenly emerged.

ForgottenSeer 85179

It makes also sense (from attacker side) to attack banks instead of random people.
At the same time, it's ridiculous to see such news as banks should have very good security but sadly this isn't the case.

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.