Hackers Steal Bank's Crypto Credentials, But Are Foiled By Their Own Typo

New submitter tlambert writes: Unknown persons stole Bangladesh Bank transfer credentials for payments via the international banking system, and then proceeded to start moving money to the Philippines and Sri Lanka. A human foiled the plot after ~$80M had been stolen with another $870M stopped, after they noticed the word 'foundation' misspelled in one of the requests. Bangladesh, meanwhile, is blaming the U.S. Federal Reserve for trusting their credentials. (Note: Bangladesh Bank isn't like Bank of America; it's the country's central bank.)

RIP

A typo the source of an almost $1BILLION mistake? Someone's going to die behind this...

Re:RIP

[Noah+Haders]

Maybe they'll be hacked to death by a mob with meat cleavers in public in broad daylight. Oh wait that only happens to bloggers.

modern security weakness is inbound signaling

[jtayon]

Modern security especially for this kind of amount of money would really worth having an out of bond validation of money transfer.

Not taxing transaction does not means that transactions should have non null costs. So de facto the minimal tax that should be imposed to money transactions on the internet MUST be a strong real authentication of the persons out of the internet plan to validate transactions.

Else, we are just letting frauders have a good incentive to cheat. Especially since the victims are all forced to pay by subscribing insurance covering internet frauds thus internet payment actors have no incentive to stop the fraud since it is pumping their bebefits.