Russian hackers had months-long access to Denmark's central bank

silversurfer

Level 74
Verified
Trusted
Content Creator
Malware Hunter
Aug 17, 2014
6,325
Russian state hackers compromised Denmark’s central bank (Danmarks Nationalbank) and planted malware that gave them access to the network for more than half a year without being detected.

The breach was part of the SolarWinds cyber espionage campaign last year that the U.S. attributed to the Russian Foreign Intelligence Service, the SVR, through its hacking division commonly referred to as APT29, The Dukes, Cozy Bear, or Nobelium.
“The Solarwinds backdoor in Danmarks Nationalbank was open for seven months, before the attack was detected by coincidence by the American IT-security company Fire Eye [sic]” - Version2
In an email statement for Version2, the bank admitted that it was affected by the SolarWinds supply-chain attack and that it took action immediately after learning of the compromise.

“Action was taken quickly and consistently in a satisfactory manner, and according to the analyzes performed, there were no signs that the attack has had any real consequences” - Denmark Central Bank
 

upnorth

Moderator
Verified
Staff member
Malware Hunter
Jul 27, 2015
4,442
Unknown access to a countries central bank for 7 months is extreme and very dangerous not just for that specific country, but also to it's citizens. I fully understand that the bank try it's best to sort of downplay and make this problem less then it actually is, but Denmark is a part of EU. Will be interesting to see if EU and it's available legal options will work in this case. I can guess, probably not.

I wouldn't be surprised if more hacked info on other banks in Scandinavia suddenly emerged.
 
F

ForgottenSeer 85179

It makes also sense (from attacker side) to attack banks instead of random people.
At the same time, it's ridiculous to see such news as banks should have very good security but sadly this isn't the case.
 
Top