Leaked files suggest US National Security Agency accessed Swift global interbank messaging system

 
Francesca Washtell
Follow Francesca
Florida Attorney General Opens New CyberCrime Unit Office
The documents posted by the Shadow Brokers include Excel files listing computers on a service bureau network, user names, passwords and other data (Source: Getty)

A slew of files leaked online yesterday are said to indicate the US National Security Agency (NSA) monitored global bank transfers.

The documents and computer code, released by a hacking group called the Shadow Brokers, reportedly show the NSA accessed the Swift interbank messaging system, which could have allowed it to covertly monitor money flows among some banks based in the Middle East and Latin America.

The release included computer code that could be adapted by criminals to break into Swift servers and monitor messaging activity, said Shane Shook, a cybersecurity consultant who has helped banks investigate breaches of their Swift systems.

Read more: Russian hacking is a "fact" in post-truth strategy says government minister

Although some records bear NSA seals, their authenticity has yet to be confirmed. The NSA has not yet commented on the leak.

The Swift network allows banks to move money around the world and the leaked files indicate one of its major bureaus, EastNets, may have been hacked. Shadow Brokers spreadsheets seemed to list banks that had been breached with data-gathering software, also known as "implants".

However EastNets, which is based in Dubai, denied it had been hacked in a statement, and said the assertion was "totally false and unfounded".

Read more: Banks have been warned they're vulnerable to this specific new cyber attack

Criminals stole millions of dollars from Bangladesh's central bank after Swift was targeted by hackers last year.

"The release of these capabilities could enable fraud like we saw at Bangladesh Bank," Shook said.

In response, Swift has said there is no evidence that the main Swift network had ever been accessed without authorisation.

Read more: Three mobile blackmailed by Danish hackers

Programmes for attacking various versions of the Windows operating system were also published.

Former NSA contractor Edward Snowden has dubbed the NSA's alleged activity as the "Mother of All Exploits":

https://twitter.com/Snowden/status/852949485726699520

Related articles