As writes “Kommersant” with reference to two sources in the information security market and close to the Central Bank of the interlocutor, one of the Russian banks have lost more than RUB 100 million due to cyber attacks. In a press-service of the Bank of Russia confirmed that the regulator has fixed the fact of the attack and that, according to preliminary estimates, the damage amounted to little more than 100 million rubles.
FinCERT’s Central Bank — the Central monitoring and response to computer attacks in the financial sector — cooperates with law enforcement agencies that conduct relevant activities, said the regulator. On which Bank it is, there is not specified. The interlocutor of the edition close to the Central Bank, claims that the attack was subjected to a branch of a regional Bank, and the hacker withdrew all the funds that were in this branch.
According to a source in the Central Bank, according to one version, there was a cyber attack using a vulnerability in the automated banking system (ABS), developed by Diasoft company, which was used by the Bank. “Hackers apparently infiltrated the network of the Bank and cracked the ABS. As a result, the payment of ABS for a large sum came out with a spoofed address. If the investigation confirms that the incident will be the first case of a successful attack on the ABS with a serious theft”, — said the source “Kommersant” in the market of information security.
A source in the Central Bank, in turn, said that to draw any conclusions before the investigation has just started its work. According to him, if the problem is really in the software product “Diasoft”, the company will bring this information to address the vulnerabilities. The company over the past few weeks clients in the financial sector to NGOs for any incidents in information security is not addressed, said a member of the Board of Directors of “Diasoft” Alexander Gentsis.
ABS — hardware-based-software complex aimed at automating banking activities, says “Kommersant”. The system keeps track of data about Bank’s clients concluded contracts for banking services, settlement and currency accounts, processed payment orders, formed register of payments for settlement through the payment system of the Central Bank. The ABS usually works in the Bank’s internal network and is not associated with public networks. Russian banks mostly use ABS domestic developments from companies Diasoft, CFT, R-Style Softlab, BIS etc. Customers “Diasoft” are more than 300 banks — particularly Sberbank, Gazprombank, Alfa-Bank, according to the website of the company.
PSB reported that they use home-made ABS. The production of “Diasoft” there used “for other purposes”, and it is “accessible only from the internal network of the Bank for selected employees.” In the absolute-Bank, according to the Director of the information technology Department of the Bank Andrey Gorelov, also used by the ABS.
Alfa-Bank said that they do not use software of “Diasoft” as ABS. At the same time, it stressed that the vulnerability can be in any software. The representative of Sberbank in turn, said that the Bank does not use the ABS developed “Diasoft”. “ABS developed by Sberbank, taking into account risks and threats, and initially contains all the necessary mechanisms to counter attacks,” according to Sberbank.