Customized malware was apparently used to drain millions from the bank. Now, thankfully, most of the money has been recovered, and two arrests have been made in connection with the cyber-heist.

Meanwhile SWIFT has released new Security Notifications as below

•New Modus Operandi bulletin related to an ongoing investigation where attackers used the cover payment method (SWIFT bulletin 10060).

•New bulletin related to a recently observed spear phishing e-mail campaign (bulletin 10059).

•The Modus Operandi bulletin related to an attack where attackers created dedicated message interface operators has been updated (bulletin 10058).

•The bulletin with the machine digestible IOCs (CSV) has been updated with the IOCs from the above investigations (bulletin 10001).