How A Printer Lost A Country $81,000,000

Cipher
Cipher
385,883
356
Published 2024-06-26
#heist #hacker #cybercrime

On the morning of February 7th, 2016, director of Bangladesh Bank Zubair Bin Huda, takes the elevator and gets off on the 10th floor. He walks briskly into the most restricted part of the building, his mind fixated on the problem that has plagued his office for the past couple of days – the printer. This isn’t just any printer: It’s an automated machine hooked up to the bank's software, designed to print transaction reports instantly, automatically, and 24/7.

This printer was a big deal, and the empty tray represented a huge problem. After troubleshooting the issue for two days, the printer finally comes back online! But then, a backlog of more than expected reports started rolling out, and it was soon obvious that something wasn’t right. The New York Federal reserve received instructions to drain their entire account. Panic erupted as employees rushed to stop the transaction, but it was likely too late. – Bangladesh had just lost 1 billion dollars.
All Comments (21)
  • @Cipher-HD
    Thank's everyone for the support on the video! If you liked it, please consider subscribing. We have so much cool content in the works :)
  • @hellboy19991
    A German bank denying a 20 million transaction for a typo is the most German thing ever
  • @L-Office
    if you bought a HP printer, you also know how it feels losing a billion dollars to a printer. The cartridge prices are ridiculous
  • @HummyGG
    as a printer technician I can hardly believe that they were physically printing every transaction log on one single printer....
  • @fyrestorme
    Summary: Q: How A Printer Lost A Country $1,000,000,000? A: Employees opened an email attachment.
  • @dom91373
    Who the heck opens a zip file thinking it's a job application
  • @TheRedDraqon
    So, Thor from Pirate Software was right! "If the printer makes a weird noise, I shoot it."
  • @ProjectDT88
    Correct Title: How A Printer Played A Very Small Role In A Country Almost Losing $1,000,000,000
  • @Tigrou7777
    0:17 If I was the director, my biggest concern wouldn't the printer, but the fact that the staff work completely naked.
  • @thebalancer
    that was a goat level editing and representation. hats off to the team
  • @danielwolf69
    Reminds me of a Disrupt or Fern video. 7.2k views is criminally underrated for this quality of production and storytelling. Keep it up!
  • @abuDojanaTahmid
    As a Bangladeshi Cyber Security researcher I thoroughly enjoyed the video.
  • @MemeMan42069
    Imagine being so bad at basic parts of hacking you fumble the ball and turn a 1b heist into an 81m dollar heist.
  • @xcoder1122
    Who still allowed e-mails with attachments to directly pass through to employee mailboxes in 2015 simply doesn't deserve any better. In our company, not even HTML messages are allowed to pass through to employee accounts. Employees only get plain text e-mails, never anything else. If the mail contains no plain text message, the incoming mail server translates the HMTL text to plain text before forwarding it. If there are attachments, those are stored on an extra server and are then stripped from the mail. Even if hackers manages to hack the incoming mail server, it's outside of the internal network (before the main firewall) and has no access to anything internally. It can only forward messages to the internal mail server (that will drop all mails containing attachments or HMTL immediately without further notice) and it can upload attachments to the attachment server (there is no external interface for downloading attachments). So even if attackers get total control of the incoming mail server, they cannot access attachments from any other mails and if they disable stripping HMTL/attachments, then these mails never go anywhere as the next server in the process chain will just drop them without even trying to process them. There is no way you can hack into our network by using an exploit in HMTL mails or by adding malicious attachments, as none of this ever reaches any employee. Further sending the same (or a very similar) message to multiple employees one by one will immediately cause that message to be blocked as spam for all employees, because this is no normal use case. Either a message is for one specific employee only or it is for a group of them but then it is send to an internal group distribution address (e.g. every team has a team address for that purpose) or it is send to all the related employee at once (multiple TO or CC). Everything else is clearly spear fishing and performed by someone who doesn't even know the group addresses or who has no idea which employees belong to the same team.
  • @udirt
    you don't have to figure out that an international bank uses SWIFT you can't assume SWIFT is a state of the art system, it's been running for many decades and could be the archetype of 'this old software banks run'
  • @Zscach
    Our financial system is a fucking joke. Any 5 year old could point the flaws in this pathetic "system". A fucking weekend is enough for banks to not be able to communicate? Are you fucking kidding me?
  • @bigsmelly1262
    I am astounded this video only has 1.6k views, this deserve's at least 100k for how quality it is
  • @anythingbenz4005
    So it actually lost them 81 mil since the other transactions didn't go through.
  • @gnuPirate
    Why are the employees naked while gathered around the printer? Something was very strange about this from the outset.
  • @honjanginamo
    if THIS is your first video, you know the channel is gonna take off, godspeed Cipher!