bnn.lv Latviski   bnn-news.com English   bnn-news.ru По-русски
Saturday 20.01.2018 | Name days: Aļģirds, Orests, Oļģerts, Alģis
LatviaLatvia

Latvian banks fall victim to large-scale theft

FaceBook
Twitter
Draugiem
print
(No Ratings Yet)

Baltic news, News from Latvia, BNN.LV, BNN-NEWS.COM, BNN-NEWS.RULast Wednesday, 3 May, a massive theft took place. Experts are still unsure about the exact scale and possible consequences of this crime. The crime involves IT service provider Rostelecom, which is partially owned by Russia. This company managed to intercept data flow from multiple banks. Among them are two Latvian banks, as reported by Nekā personīga.

The programme reports that banks claim no data was stolen from them, as all activities are safely encrypted. Internet security experts, on the other hand are not so certain. The Russian company most likely managed to access strategically important information about the internal function of those banks. This information can be used for large-scale attacks.

On 26 April, Rostelekom managed to achieve that all transactions performed by banks were being redirected in secret through Russia for five to seven minutes. NP notes that this was an unprecedented event when a company owned by the Russian state intercepted all correspondence.

It is possible that what happened was only a test. Reaction to this ‘test’ allows Russian special services to study the speed and methods used to trace the attack.

Cert.lv deputy manager Varis Teivans told the programme: «This is what happened with this data flow. For ban X, transaction communication with MasterCard or VISA was performed not through original partners in Germany or USA or elsewhere, but through internet service provider close to the Russian state.»

It is possible to trace Rostelekom’s attacks by the seconds on websites that process data flow. It is clear from looking at the data that banks’ transactions are performed using specific data transfer companies. Suddenly, all data starts flowing through Rostelekom servers, NP explains.

Rostelekom can be compared to Latvia’s Lattelecom, the programme notes. The only difference is the size and scale of the company. Rostelekom has enormous international internet connections with other world-class IT companies. Lattelecom established a high-speed optic communication line with Rostelekom in 2009.

The company was previously managed by Sergei Kalugin, who was later rotated to Transport Ministry. Since March 2017, the company has been managed by a different political figure from United Russia – Mikhail Osevskiy. He was St Petersburg’s vice-governor for ten years. After that, he was vice-president of VTB Bank.

Rostelekom’s data interception can be considered an attack, because the intercepted information was carefully selected to contain only specific bank and credit card servicing companies VISA and MasterCard. Something like that cannot happen automatically, journalists say.

Teivans says that this situation is an indication that Russia does not care about secrecy in its cyber-operations. It shows the country is prepared to play dirty in the open without worrying about opinions of international partners, because this Rostelekom is not isolated – it has partners around the world.

They all know an incident has taken place. The question is – what excuse will Rostelekom offer. It is a sigh that they will no longer try to hide. Perhaps it is their strategic goal – to not hide any longer. Perhaps they want their cyber capabilities to be shown to the public and more amplified and cultivated in public space. Similar to how Russian hackers were glorified during elections in USA. And this is a goal to some extent, Cert.lv expert told the programme.

It should be noted that data from Norvik and DNB Bank was intercepted in Latvia. Representatives of the two banks told NP that they use encryption methods to communicate with other service providers. Data intercepted by thieves should be unreadable to thieves.

Cert.lv experts are not as optimistic – even if the encryption key is intact, intercepted information is still very valuable for plans of future attacks. «It is the same as performing reconnaissance of the area before a battle, learning about the opposing army’s strengths and weaknesses. Having information allows generals to plan the scale, tactics and goals of attacks.»

Teivans explains the situation: «Neither we nor they can confirm that something has been stolen. It should be clear to everyone that financial institutions will always say that everything is good and nothing is stolen. […] Even though it was impossible to steal anything of value, they still surveyed the map. The attacker now knows the correspondence targets of those financial institutions when they perform transactions. They can now come up with measures to influence those processes.»

When asked if banks suffered damages or not, Defence Ministry’s state secretary Janis Garisons told NP: «It is hard to say, because we only have initial estimates. Banks should be asked directly.»

The Defence Ministry’s representative replies the following way in relation to any attack objectives: «We can only assume, but it is hard to say if there was any goal, what was and what was not achieved.»

NP found out that the largest internet service providers in Latvia have formed LIX system. When internet communications in foreign countries were expensive, communication in Latvia was performed through this network. As technologies continue to develop, it is now cheaper to use networks in foreign countries.

Latvia has strict rules on data flow that affect so-called critical infrastructure, stating that it should be performed solely through state networks.

Teivans says that this situation raises certain concerns, «because this is not the first time when we see communication intended for Latvia or goes from Latvia is unexpectedly diverted through Moscow. Such cases were noted in the past as well. One such incident took place last year – data intended to be transferred from one institution in Latvia to another was unexpectedly transferred through Moscow.»

Estonia has a special law that states that bank transactions in the cyber environment have to be performed within Estonia’s borders. Latvian Defence Ministry wants to establish similar legislation, but it is currently very hard to limit the IT sector in the country.

Ref: 225.109.109.6011


Leave a reply

Economist: the most important reform has to happen in people’s heads

«Of all the clever things taught to us in school about psychology, one thing that has stuck with me over the years is the idea of internal/external control point. There are people who believe they make their own fate. There are also people who believe our fate depends on external powers. I suspect people in Latvia explain successes and failures with external factors much more than people in Switzerland or any other country that has enjoyed its freedom longer than Latvia,» comments Luminor Bank’s economist Pēteris Strautiņš.

Minister promises bigger wages for working people and support for country’s industry

«Latvian Economy Ministry’s priorities for 2018 include increasing wages for working people and providing support to the country’s industry. For Latvia’s centenary year, every resident should have the right to experience the increase of the personal and state welfare,» promises Economy Minister Arvils Ašeradens.

Latvenergo: electricity price has declined 30% in the past three years

Average electricity price in Latvia has declined in recent years. The average price of electricity has declined by 30% at Nord Pool exchange between 2014 and 2017, allowing end user costs to decline, says Latvenergo.

Alcohol sellers in Estonia to be checked by little «police»

To find shop assistants illegally selling alcohol or tobacco to minors, Estonian police introduces the method of sending minors as police aides to retail shops to try to purchase the products banned to them.

EY study: cyber security has become a priority to banks this year

Over the course of the year, priorities of banks around the world have switched from reputation and risk management to data security matters, as concluded in the latest EY Global Banking Outlook 2018.

Political association: UGF and Harmony are covering up state capture

«Parliamentary investigation of Oligarchs case has shown what is what in the Saeima of the Republic of Latvia. Green farmers are in full harmony, covering up Aivars Lembergs and the fact of state capture. They and Inguna Sudraba have made the parliamentary investigation into a farce. Unfortunately, the power in those people’s hands is no farce – rather misfortune for all of Latvia. I hope citizens will take all that into account when they go voting,» says leader of Kustība Par! Daniels Pavļuts.

Tallinn-Helsinki tunnel plan lacks ambition, says «Angry Birds» game maker

While Finland and Estonia work on plans of an under-sea tunnel from Tallinn to Helsinki, the construction of which could start in the 2030s, a Finnish businessman, previously involved in development of Angy Birds video game, has presented plans to finish the massive construction project in 2024 already.

Experts: healthcare financing law will deny healthcare to the least protected

In a discussion regarding healthcare, experts said that Latvian President Raimonds Vējoņis’ proposed Healthcare Financing Law is economically unjustified and ineffective. The document lacks principles of a socially responsible state, because healthcare is becoming less accessible, which will likely worsen public health indexes, says Kustība Par! political party.

Branded «aggressor state», Russia says Ukraine buries Minsk peace agreements

As the Donbas War continues, the parliament of Ukraine has passed the so-called Donbas reintegration bill after three days of debates defining territories controlled by pro-Russian separatists in the east of the country as temporarily occupied by Russia.

Weather to remain winter-like in Latvia during the weekend and next week

On Friday and Saturday, no major increase of snow is expected. Air temperature will increase slightly, but colder masses of air will slow into the country on Sunday, as reported by Latvian State Environment, Geology and Meteorology Centre.

Winter storm in Netherlands and Germany turns tragic

A powerful winter storm in western and central Europe has claimed the lives of eight people.

Lithuanian bishops: skipping fasting on February 16 this year is not a sin

In an unprecedented move, the Conference of Lithuanian Bishops, the governing body of the Lithuanian Catholic Church, said that meat dishes okay for the people of faith on February 16, which marks the 100-year anniversary of Lithuania's statehood and the Lent Friday, which is traditionally a day of fasting for religious Catholic people.

Coincidence? Votes from Harmony and UGF ensure Sudraba remains the head of Oligarchs case committee

On Thursday, 18 January, the majority of Saeima members voted against the proposal to dismiss Inguna Sudraba from the post of the head of parliamentary investigative committee in charge of the review of the infamous Oligarchs case.

Kaljulaid criticised over involvement of acclaimed, but unrestrained director in centennial reception

As Estonia readies for the presidential reception to honour the 100th anniversary of Estonia, its President Kersti Kaljulaid is being criticised in an open letter for trusting Tallinn’s NO99 theatre, whose director physically assaulted a female colleague.

22.1% of Latvia’s residents subjected to risk of poverty

In 2017, 425 thousand persons or 22.1 % of Latvia population were at risk of poverty in 2016 – 0.3 percentage points less than in 2015. Equivalent income of this part of the population were below 330 euros monthly.

LAAC: Latvia’s milk market can be sorted out by joining forces in exports

Latvian Association of Agricultural Cooperatives (LAAC) has received support and praise for the public discussion regarding rapid milk procurement price changes, which is something that has recently affected the majority of agricultural cooperatives. This has helped cooperatives band together in order to sort out the milk market. This idea came from the example set by grain producer cooperatives, which did the same thing fifteen years ago, as reported by the association’s representatives.

Forevers announces its decision to exit from Latvian Federation of Food Companies

Forevers meat processing company has decided to exit from Latvian Federation of Food Companies (LFFC). The contract between two parties will be terminated in January.

Saeima’s Oligarchs case investigative committee hastily approves final report

In spite of objections, grammatical errors, criticisms about lacking effort, as well as Inguna Sudraba’s unfit status to lead the committee, members decided to move the meeting from 11:00 to 08:00 and approve the final report in a rushed vote.

Removal of 1 and 2 euro cent coins from circulation suggested by Bank of Estonia

Estonian central bank is willing to follow the eurozone trend of limiting the circulation of euro 1-cent and 2-cent coins and in time to remove them entirely from circulation in the Baltic country.

Cert.lv: attacks on e-health system and LETA were likely ordered

Attacks on e-health system and LETA agency were likely ordered, said Cert.lv deputy manager Varis Teivāns in an interview to Rīta Panorāma programme of LTV.

As Catalan parliament reconvenes, it elects pro-independence speaker

The Catalan regional parliament has in its first sitting since its ousting and snap December election elected a separatist-minded politician as its Chairman, which indicates that the attempts to break the region away from Spain would continue.

Latvia’s National Armed forces receive new Harris tactical radio equipment

In 2017, Latvia received tactical military radios worth USD 10.5 million from American Harris Corporation. Procurement of radio equipment will further improve command function and help develop a lasting communication system with other NATO member states, as reported by Latvian Defence Ministry.

MEP: Europe continues strengthening its energy independence

«The European Parliament has voiced strong support towards Europe’s energy independence and moving its energy policy away from Russia’s monopoly by investing in energy efficiency and renewable energy resources,» said MEP Krišjānis Kariņš after the vote on Clean Energy Act’s first reading in Strasbourg.

Apple expected to pay additional 38 billion USD in taxes for money kept abroad

Motivated by the U.S. tax reform, Apple will pay about 38 billion U.S. dollars (31 billion euros) in tax on the roughly 250 billion dollars (204 billion euros) the computer technology firm keeps outside of its country of origin as it plans to focus more on its contribution to the American economy.

Latvian police commenced three criminal processes for contraband of drugs this year

In the first two weeks of 2018, State Revenue Service’s Customs Police commenced three criminal processes in regards to illegal drugs contraband in postal packages from Lithuania to Latvia.

Newest comments

Would you be ready to boycott something in your life?

View Results

Loading ... Loading ...

Polls Archive



Category feed: Feed: