bnn.lv Latviski   bnn-news.com English   bnn-news.ru По-русски
Wednesday 24.05.2017 | Name days: Marlēna, Ilvija, Ziedone
LatviaLatvia

Latvian banks fall victim to large-scale theft

FaceBook
Twitter
Draugiem
print
(No Ratings Yet)

Baltic news, News from Latvia, BNN.LV, BNN-NEWS.COM, BNN-NEWS.RULast Wednesday, 3 May, a massive theft took place. Experts are still unsure about the exact scale and possible consequences of this crime. The crime involves IT service provider Rostelecom, which is partially owned by Russia. This company managed to intercept data flow from multiple banks. Among them are two Latvian banks, as reported by Nekā personīga.

The programme reports that banks claim no data was stolen from them, as all activities are safely encrypted. Internet security experts, on the other hand are not so certain. The Russian company most likely managed to access strategically important information about the internal function of those banks. This information can be used for large-scale attacks.

On 26 April, Rostelekom managed to achieve that all transactions performed by banks were being redirected in secret through Russia for five to seven minutes. NP notes that this was an unprecedented event when a company owned by the Russian state intercepted all correspondence.

It is possible that what happened was only a test. Reaction to this ‘test’ allows Russian special services to study the speed and methods used to trace the attack.

Cert.lv deputy manager Varis Teivans told the programme: «This is what happened with this data flow. For ban X, transaction communication with MasterCard or VISA was performed not through original partners in Germany or USA or elsewhere, but through internet service provider close to the Russian state.»

It is possible to trace Rostelekom’s attacks by the seconds on websites that process data flow. It is clear from looking at the data that banks’ transactions are performed using specific data transfer companies. Suddenly, all data starts flowing through Rostelekom servers, NP explains.

Rostelekom can be compared to Latvia’s Lattelecom, the programme notes. The only difference is the size and scale of the company. Rostelekom has enormous international internet connections with other world-class IT companies. Lattelecom established a high-speed optic communication line with Rostelekom in 2009.

The company was previously managed by Sergei Kalugin, who was later rotated to Transport Ministry. Since March 2017, the company has been managed by a different political figure from United Russia – Mikhail Osevskiy. He was St Petersburg’s vice-governor for ten years. After that, he was vice-president of VTB Bank.

Rostelekom’s data interception can be considered an attack, because the intercepted information was carefully selected to contain only specific bank and credit card servicing companies VISA and MasterCard. Something like that cannot happen automatically, journalists say.

Teivans says that this situation is an indication that Russia does not care about secrecy in its cyber-operations. It shows the country is prepared to play dirty in the open without worrying about opinions of international partners, because this Rostelekom is not isolated – it has partners around the world.

They all know an incident has taken place. The question is – what excuse will Rostelekom offer. It is a sigh that they will no longer try to hide. Perhaps it is their strategic goal – to not hide any longer. Perhaps they want their cyber capabilities to be shown to the public and more amplified and cultivated in public space. Similar to how Russian hackers were glorified during elections in USA. And this is a goal to some extent, Cert.lv expert told the programme.

It should be noted that data from Norvik and DNB Bank was intercepted in Latvia. Representatives of the two banks told NP that they use encryption methods to communicate with other service providers. Data intercepted by thieves should be unreadable to thieves.

Cert.lv experts are not as optimistic – even if the encryption key is intact, intercepted information is still very valuable for plans of future attacks. «It is the same as performing reconnaissance of the area before a battle, learning about the opposing army’s strengths and weaknesses. Having information allows generals to plan the scale, tactics and goals of attacks.»

Teivans explains the situation: «Neither we nor they can confirm that something has been stolen. It should be clear to everyone that financial institutions will always say that everything is good and nothing is stolen. […] Even though it was impossible to steal anything of value, they still surveyed the map. The attacker now knows the correspondence targets of those financial institutions when they perform transactions. They can now come up with measures to influence those processes.»

When asked if banks suffered damages or not, Defence Ministry’s state secretary Janis Garisons told NP: «It is hard to say, because we only have initial estimates. Banks should be asked directly.»

The Defence Ministry’s representative replies the following way in relation to any attack objectives: «We can only assume, but it is hard to say if there was any goal, what was and what was not achieved.»

NP found out that the largest internet service providers in Latvia have formed LIX system. When internet communications in foreign countries were expensive, communication in Latvia was performed through this network. As technologies continue to develop, it is now cheaper to use networks in foreign countries.

Latvia has strict rules on data flow that affect so-called critical infrastructure, stating that it should be performed solely through state networks.

Teivans says that this situation raises certain concerns, «because this is not the first time when we see communication intended for Latvia or goes from Latvia is unexpectedly diverted through Moscow. Such cases were noted in the past as well. One such incident took place last year – data intended to be transferred from one institution in Latvia to another was unexpectedly transferred through Moscow.»

Estonia has a special law that states that bank transactions in the cyber environment have to be performed within Estonia’s borders. Latvian Defence Ministry wants to establish similar legislation, but it is currently very hard to limit the IT sector in the country.

Ref: 225.109.109.6011


Leave a reply

Interest of Indian youth for study opportunities in Latvia increases year after year

Indian Foreign Affairs Minister Mobashar Jawed Akbar emphasized during his meeting with Latvian Foreign Affairs Minister Edgars Rinkevics that India has experienced very rapid economic growth in the past year. He added that the upcoming Latvian-Indian business forum will be an important step towards closer cooperation in economy.

Latvian government reduces administrative burden on amelioration

Latvian government has agreed to support Agriculture Ministry’s prepared amendments to requirements that dictate construction requirements for waterworks and amelioration systems, as well as cadastral rules. Changes were prepared to reduce administrative burden, Agriculture Ministry reports.

Survey: 32% of Latvian residents have no savings

Losing their income, 23% of respondents would not be able to cover everyday expenses, 5% would be able to maintain payments for less than a month and 20% of respondents would be able to cover a whole month’s worth of expenses, shows the survey performed by Nordea on personal finances.

Producer prices in April grew 0.1% in Latvia

Compared to March, the level of producer prices in Latvian industry grew by 0.1 % in April 2017. The prices of products sold on the domestic market increased by 0.5 %, whereas the prices of exported products dropped by 0.2 %.

LSBA: closure of gambling halls is an attempt by officials to promote their image for elections

Latvian Association of Gaming Business asks deputies of Riga City Council to reconsider their actions in relation to the planned decision to prohibit gambling halls in Riga’s historic centre.

More people have moved to Estonia than left it in 2016

13,792 people have emigrated from Estonia in 2016 and 14,822 have immigrated, Estonian statisticians have estimated, concluding that net migration in the Baltic country has been positive for the second consecutive year.

Saeima to discuss the role of the Security Department of the Bank of Latvia

Saeima’s Defence, Internal Affairs and Corruption Prevention Committee will visit the Bank of Latvia on Wednesday, 24 May, to discuss the role of the bank’s Security Department, as BNN was informed by Saeima’s press-service.

Razuks hints healthcare budget’s increase would require new fees

Sides involved in discussions about finding additional finances for healthcare have yet to reach a definite agreement. It is possible there may be a new fee introduced, said Saeima Public Health sub-committee chairman Romualds Razuks told Rīta panorama on Tuesday, 23 May.

Twelve million euros invested in creation of car wash network in Latvia

Wash & Drive opens the largest self-service car wash station in Riga. In cooperation with Citadele Bank, EUR 800,000 was invested in the creation of this seven-box car wash, as confirmed by the bank.

EC: Latvia’s tax system is less progressive than systems in other EU countries

The European Commission recommends Latvia to reduce the tax burden for small wage recipients and move it to other sources that are less impacting on growth and motivate people to pay taxes.

Latvia to lead joint air and land military exercises this year

Annual international military exercises Saber Strike will be taking place in Latvia from 3 – 15 June. Allied troops and armoured vehicles have begun arriving in Latvia for the upcoming exercises, as reported by Defence Ministry.

Tragic blast shakes Manchester, UK

In an explosion, which has occurred in a mass sports and music events venue in the British city of Manchester, 22 people have died and over 59 have suffered injuries.

Experts: Rail Baltica – connection that benefits everyone

The essence of Rail Baltica project is not combating the trends currently present in the world, but rather using them as an advantage, says advisor to the Bank of Latvia Andris Strazds. He adds that more and more economic and social development is centered in large and urban city centres.

Latvian companies ahead of neighbours in organization of business trips

Latvian businesses are more progressive in the organization of business trips than Lithuania. They do, however, spend a lot of money on planning and organizing of those trips. In addition, they also use inefficient financing methods – 20% of employees are forced to pre-finance their business trips from their own pockets, according to results of an international study.

Riga Eastern Clinical Hospital to identify patients using fingerprint data

Riga Eastern Clinical Hospital has introduced biometric data identification system that will be used to identify patients using fingerprint data, BNN was informed by the hospital.

FDC: micro-enterprise tax has created serious defects

The micro-enterprise tax has created serious defects for Latvia’s tax system, said Fiscal Discipline Council chairman Janis Platais in an interview to Latvijas Avīze.

Microsoft software licences cost Estonia millions each year

Estonian ministries and their subordinated institutions pay a total of under five million euros each year in Microsoft software licence fees.

Latvia’s unemployment rate was 9.4% in Q1 2017

In Q1 2017 the Latvian unemployment rate constituted 9.4 %. Compared to the previous quarter, the unemployment rate increased by 0.1 percentage points, whereas, compared to the same period of the year before, the rate reduced by 0.9 percentage points.

Pension expert: how far can index funds root themselves in Latvian pension plans?

Latvian pension plan clients can still pick existing pension plans with sufficiently flexible deposit policy and possibilities to receive consultations. It should be added, however, that pension plans based on index funds can find clients in Latvia for whom low-price guarantees is important the most, Nordea Pensions Latvia board member Ilya Arefjevs predicts.

Latvian Defence Ministry plans the largest tendering process in country’s history

This summer, Latvian Defence Ministry plans to announce the largest tendering procedure in the history of Latvia’s army. It is planned to procure heavy vehicles to transport armoured vehicles and troops. The total amount for the next ten years may reach EUR 200 million, as reported by Nekā personīga.

Study: engaging in business improves satisfaction with life

It has been concluded that psychological aspects are far more important than financial aspects in business operations – stability, family support, exchange of experience and realization of ideas are important for emerging businessmen, as concluded in a study performed by Altum.

Following use of EU funds, demand for loans increases in municipalities

Demand for loans from the State Treasury has increased after use of EU funds became more active, said Kaspars Abolins, chief of State Treasury, in an interview.

Swiss voters decide to move away from nuclear energy

Switzerland has decided to quit nuclear power stations and opt for renewable energy, show the results of a referendum held on Sunday, May 21, where 58% voters backed phasing out nuclear power.

Child vaccination made mandatory in Italy

Reacting to lower child protection against measles, the government of Italy has decided to make vaccination against 12 illnesses mandatory for children before they start going to state schools.

Deputies to decide on prohibiting gambling in Riga’s historic centre

On Monday, 22 May, deputies will discuss the matter on sorting out Riga’s historic centre. It is stated in new territorial plans that it will be prohibited for gambling halls to be located in this area.

Newest comments