Reply to post: Re: Russian Central Bank's Automated Workstation Client

Cybercrooks slurp nearly $1m from Russian bank after pwning router at regional branch

Muppet Boss

Re: Russian Central Bank's Automated Workstation Client

Automated like in "with the help of a computer". A better translation would probably be an Automated Workplace of the Central Bank's Client (yup these guys are serious about names). This is just a Windows program, think of SWIFT Alliance Workstation (SAW). Search for "Рекомендации по настройкам АРМ КБР" to witness this funky bit of user interface for yourself. I would not be surprised if it was installed on a generic desktop inside the bank's shared LAN w/o any extra segmentation and with a few deferred Windows patches to ensure system stability; the bad hats would want to obtain access into the LAN by one of the various means and then it could be as easy as locating the correct PC, firing the scripts and letting their pet fintech boy spend some quality time.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019