網絡竊賊盯上SWIFT全球支付網絡大綱

Banks worldwide using the SwiFT global financial transaction system havebeen ordered to install an urgent software upgrade as cyber security expertswarned of a repeat of February’s raid on the Bangladesh central bank, one ofthe biggest bank robberies in history.

世界各地使用環球銀行金融電信協會(SWIFT)支付網絡的銀行被要求進行一次緊急軟件升級。網絡安全專家警告稱，史上最大的銀行搶劫案之一、2月份針對孟加拉國央行的攻擊可能重演。

Swift, which has about 11,000 bank members, said yesterday that it hadordered clients using its Alliance Access interface software to install amandatory upgrade after attackers “successfully compromised the banks’ ownenvironments” in order to send messages.

擁有大約1.1萬銀行會員的SWIFT昨日表示，已指示使用其AllianceAccess接口軟件的客戶安裝一個強制性升級，此前攻擊者“成功危及銀行自身運行環境”，以發送指令。

Meanwhile, FireEye a cyber security group hired for the probe in Dhaka,said that it had “observed activity in other financial services organisations that islikely by the same threat actor behind the cyber attack on Bangladesh Bank”.

同時，受聘調查孟加拉國央行被黑事件的網絡安全公司FireEye表示，它已經“在其他金融服務機構觀察到了活動，很可能出自對孟加拉國央行發起網絡攻擊的同一個威脅源”。

The FireEye statement, which one person in the cyber security sectorsaid amounted to a warning of a criminal “campaign” targeting banks, followedan admission by Swift on Monday that it was aware of malicious softwaredesigned to prevent banks spotting fraudulent transactions.

FireEye作出這一聲明之前，SWIFT週一承認，它知道某種惡意軟件旨在防止銀行察覺欺詐交易。網絡安全界的一名人士表示，FireEye的聲明相當於警告，犯罪分子發起了一波針對銀行的攻勢。

Swift is a global messaging network used by banks and other financialfirms across the world to send payment instructions and has become a vital partof the global financial architecture.

SWIFT是一個全球性的電文傳遞網絡，被世界各地的銀行和其他金融機構用來發送支付指令，它已成爲全球金融體系的重要組成部分。

“Central banks have been looking at cyber crime, first at their bankingsector and more recently with regard to their own websites,” said Nick Carver,publisher of Central Banking Publications. “But real-time gross settlementsystems and Swift are in a different league. Swift is the nervous system ofinternational payments. So central banks will be very concerned by thesefindings.”

“各國央行一直在關注網絡犯罪，最初把目光投向其國內的銀行業，近來又開始關注自己的網站，”《央行雜誌》(Central Banking Publications)出版人尼克•卡佛(Nick Carver)表示。“但是，實時全額結算系統和SWIFT處在一個不同的層面。SWIFT是國際支付的神經系統。因此，這些發現將讓各國央行非常擔憂。”

In an audacious weekend raid that sent tremors through the world’s banks, thehackers sent 35 fake orders from Bangladesh Bank via Swift to the central bank’s account atthe Federal Reserve in New York.

在一個週末發起的震撼全球銀行業的大膽攻擊中，黑客假冒孟加拉國央行，通過SWIFT向這家央行在紐約聯儲(New York Fed)開設的賬戶發送了35個假指令。

The transfers totalled $951m, although the thieves made off with only$81m. They were sent in four batches to accounts in the Philippines after oneSri Lanka order was questioned by a suspicious correspondent bank and the NewYork Fed decided for undisclosed reasons not to process the other 30 orders.

轉賬總額爲9.51億美元，竊賊得手8100萬美元。它們分四筆被髮往菲律賓的賬戶，但是發往斯里蘭卡的一筆款項引起一家警惕性較高的代理行提出質疑，之後紐約聯儲決定不處理另外30個指令，但沒有透露原因。

On Monday the threat research blog of BAE Systems said that it believedthat it had identified custom malware, malicious software, linked to theBangladesh heist.

週一，BAE系統公司(BAESystems)在其威脅研究博客上表示，它相信自己已經識別出了與孟加拉國央行被黑事件相關的惡意軟件。

It appeared to be part of an attack “toolkit”and wouldbe used to cover the attackers’tracks as they sent forged payment instructions.

它似乎是一個攻擊“工具包”的一部分，被用於掩蓋攻擊者的作案痕跡，使他們能夠發送假冒的付款指令而不被發現。

BAE researcher Sergei Shevchenko said the malware registered itself as aservice and operated in an environment running Swift’s AllianceAccess software suite, allowing transactions to be deleted and records changed.

BAE研究員謝爾蓋•舍甫琴科(SergeiShevchenko)表示，該惡意軟件把自己登記爲一個服務，在運行SWIFT的Alliance Access軟件包的環境中活動，使交易可被刪除，記錄可被變更。