Nepal is increasingly becoming a soft target for hackers from around the world as some Chinese hackers steal the money from ATM hacking the system yesterday night, but the depositors money in the banks is safe.
After Chinese nationals hacked ATM systems in Kathmandu, most of the banks have closed down their ATM services throughout the day today though some of them resumed their services in the evening.
The ATMs of over six banks had turned temporarily dysfunctional the whole day after a gang of six Chinese nationals hacked the banks' collective ATM system by hacking the system of Nepal Electronic Payment System (NEPS) Limited – an interface that allows the transaction of money deposited in a bank by using cards issued by other member banks – according to the Nepal Bankers Association (NBA). “The NEPS has incorporated 11 commercial banks, including Prabhu Bank, Sunrise Bank, Machhapuchchhre Bank, Janata Bank, Siddhartha Bank, Citizens Bank, NIC Asia Bank, Prime Bank, Nepal Bangladesh Bank and Global IME Bank, apart from seven development banks.”
While depositors’ money was not affected by Saturday night’s attack, the exact amount of money looted has yet to be calculated. “The Police confiscated Rs 12.60 million and around $10,000 along with 132 forged VISA debit cards, 17 authentic VISA cards, six mobile phones, a laptop and a data card but the actual figure is yet to be known,” informed the chief of Kathmandu Police Uttam Raj Subedi.
However, records show that a total of Rs 34.5 million was withdrawn illegally in the past two days, including Rs 10.5 million Indian Currency (IC) from India, according to the Payment Systems Department at the central bank. “The hackers used debit cards at least 700 times to withdraw money from ATMs.”
The central bank, through the Monetary Policy 2015-16, had directed Nepali banks and financial institutions to switch to cards equipped with microchips, as they are safer than ones with magnetic strips. Most banks have upgraded their cards to microchips. But the ATMs recognise both the magnetic cards and cards with microchips due to transition of the technology. The hackers took advantage of the weakness, according to a banker.
Five Chinese nationals allegedly involved in the ATM card forgery were arrested from Durbarmarg, Subedi said, adding that the hackers stole millions from the bank accounts of subscribers by forging ATM cards in various ATM booths. Police believe that Zhu and his accomplices used both real and cloned bank cards in a coordinated ATM cash-out attack, where hackers breach a bank or payment processor’s systems and then use bank cards to withdraw millions in a short amount of time.
After arresting – on Saturday night – Zhu Lianang from a Nabil Bank ATM booth in Durbar Marg while trying to withdraw cash, acting on a tip-off, the Police interrogated him, who withdrew thousands in cash from the ATM using cloned debit cards. Upon interrogation, Zhu named four others – Lin Jianmeng, Luo Jialei, Zhu Liangang, Qiu-Yunqing and Chen Bin Bin, all Chinese citizens – as complicit in the hacking spree.”
The Police also seized dozens of ATM cards from the Chinese nationals.
“The Police will further launch an investigation against the accused in collaboration with banks and central bank,” Subedi said, adding that the Chinese nationals landed in Nepal on August 30 – according to their passports – and were planning to return on September 2, which shows that their sole intention was to steal cash.
Those arrested will be taken to court and kept in judicial custody. If convicted they could serve up to five years behind bars, including having to pay a cash penalty equal to the amount they robbed, according to the Police.
Following the incident, some banks urged their customers and staff not to use their debit cards on ATMs operated by other banks.
Meanwhile, the central bank has formed a committee to investigate the attack.
This is, however, not the first time that the foreigners got arrested in ATM forgery in Nepal. Earlier, two Bulgarian nationals were arrested after they were found to be involved in stealing money from ATMs Pokhara in March 2017. Likewise, in April 2017, four Moldovans were also arrested from Thamel on charge of hacking ATM cards and stealing money from bank clients’ accounts the same year. That same day, a Russian national was arrested while stealing money from a Nepal Investment Bank ATM in Durbar Marg. According to the Central Investigation Bureau (CIB) under Nepal Police, in the last seven years, police have altogether arrested 24 people, 18 of whom were foreigners. “Nepalis have mostly been found assisting foreign hackers.”
As hackers are always in search of countries with weak security systems all over the world, security systems should be upgraded periodically, according to the central bank.
After Chinese nationals hacked ATM systems in Kathmandu, most of the banks have closed down their ATM services throughout the day today though some of them resumed their services in the evening.
The ATMs of over six banks had turned temporarily dysfunctional the whole day after a gang of six Chinese nationals hacked the banks' collective ATM system by hacking the system of Nepal Electronic Payment System (NEPS) Limited – an interface that allows the transaction of money deposited in a bank by using cards issued by other member banks – according to the Nepal Bankers Association (NBA). “The NEPS has incorporated 11 commercial banks, including Prabhu Bank, Sunrise Bank, Machhapuchchhre Bank, Janata Bank, Siddhartha Bank, Citizens Bank, NIC Asia Bank, Prime Bank, Nepal Bangladesh Bank and Global IME Bank, apart from seven development banks.”
While depositors’ money was not affected by Saturday night’s attack, the exact amount of money looted has yet to be calculated. “The Police confiscated Rs 12.60 million and around $10,000 along with 132 forged VISA debit cards, 17 authentic VISA cards, six mobile phones, a laptop and a data card but the actual figure is yet to be known,” informed the chief of Kathmandu Police Uttam Raj Subedi.
However, records show that a total of Rs 34.5 million was withdrawn illegally in the past two days, including Rs 10.5 million Indian Currency (IC) from India, according to the Payment Systems Department at the central bank. “The hackers used debit cards at least 700 times to withdraw money from ATMs.”
The central bank, through the Monetary Policy 2015-16, had directed Nepali banks and financial institutions to switch to cards equipped with microchips, as they are safer than ones with magnetic strips. Most banks have upgraded their cards to microchips. But the ATMs recognise both the magnetic cards and cards with microchips due to transition of the technology. The hackers took advantage of the weakness, according to a banker.
Five Chinese nationals allegedly involved in the ATM card forgery were arrested from Durbarmarg, Subedi said, adding that the hackers stole millions from the bank accounts of subscribers by forging ATM cards in various ATM booths. Police believe that Zhu and his accomplices used both real and cloned bank cards in a coordinated ATM cash-out attack, where hackers breach a bank or payment processor’s systems and then use bank cards to withdraw millions in a short amount of time.
After arresting – on Saturday night – Zhu Lianang from a Nabil Bank ATM booth in Durbar Marg while trying to withdraw cash, acting on a tip-off, the Police interrogated him, who withdrew thousands in cash from the ATM using cloned debit cards. Upon interrogation, Zhu named four others – Lin Jianmeng, Luo Jialei, Zhu Liangang, Qiu-Yunqing and Chen Bin Bin, all Chinese citizens – as complicit in the hacking spree.”
The Police also seized dozens of ATM cards from the Chinese nationals.
“The Police will further launch an investigation against the accused in collaboration with banks and central bank,” Subedi said, adding that the Chinese nationals landed in Nepal on August 30 – according to their passports – and were planning to return on September 2, which shows that their sole intention was to steal cash.
Those arrested will be taken to court and kept in judicial custody. If convicted they could serve up to five years behind bars, including having to pay a cash penalty equal to the amount they robbed, according to the Police.
Following the incident, some banks urged their customers and staff not to use their debit cards on ATMs operated by other banks.
Meanwhile, the central bank has formed a committee to investigate the attack.
This is, however, not the first time that the foreigners got arrested in ATM forgery in Nepal. Earlier, two Bulgarian nationals were arrested after they were found to be involved in stealing money from ATMs Pokhara in March 2017. Likewise, in April 2017, four Moldovans were also arrested from Thamel on charge of hacking ATM cards and stealing money from bank clients’ accounts the same year. That same day, a Russian national was arrested while stealing money from a Nepal Investment Bank ATM in Durbar Marg. According to the Central Investigation Bureau (CIB) under Nepal Police, in the last seven years, police have altogether arrested 24 people, 18 of whom were foreigners. “Nepalis have mostly been found assisting foreign hackers.”
As hackers are always in search of countries with weak security systems all over the world, security systems should be upgraded periodically, according to the central bank.
No comments:
Post a Comment