<div dir="ltr"><a href="http://www.ibtimes.co.uk/bangladesh-bank-drops-81m-cybertheft-investigation-due-cost-probe-1567670">http://www.ibtimes.co.uk/bangladesh-bank-drops-81m-cybertheft-investigation-due-cost-probe-1567670</a><br><div class="" itemprop="articleBody" id="v_main">
<p><span>Bangladesh Bank has officially called to an end the forensic investigation by <span>cybersecurity</span> firm Mandiant as the $81m (£55m, €66m) stolen by hackers four months ago (February 2016) remains missing.</span></p><p><span>Mandiant, which is owned by US security firm </span><a title="FireEye Homepage " href="https://www.fireeye.com/" rel="nofollow" target="_blank">FireEye</a><span>,
had been working on the case after being contracted to find out how
hackers were able to infiltrate the bank's computer systems and </span><a title="Bangladesh bank hack: New York Federal Reserve 'missed red flags' before $101m cyberheist" href="http://www.ibtimes.co.uk/bangladesh-bank-hack-new-york-federal-reserve-missed-red-flags-before-101m-cyberheist-1564122" target="_blank">file fraudulent money transfers</a><span> with its account at the Federal Reserve Bank of New York.</span></p>
<p>According to <a title="Bangladesh central bank ends FireEye investigation into cyber heist" href="http://uk.reuters.com/article/us-cyber-heist-bangladesh-idUKKCN0ZD0WL" rel="nofollow" target="_blank">Reuters</a><span>,
Mandiant researchers had requested a contract extension that would have
allowed nearly 600 extra hours to complete its probe. However, this was
turned down by banking officials as the costs quickly mounted.</span></p><p><span>"It was a unanimous decision," <span>Jamaluddin</span>
Ahmed, a director of the central bank, told Reuters, adding that the
Bangladesh bank had instead decided to "take steps on its own" to
improve security. Unnamed sources, who spoke on condition of anonymity,
said the cost of the investigation was a major factor in choosing to end
the contract.</span></p><p><span>The sources said Mandiant was paid
roughly $280,000 (£213,000) for about 700 hours of work. However, while
Mandiant would no longer be involved, the banking sources did admit that
it may still work alongside "external experts" to get <span>cybersecurity</span> advice.</span></p><p><span>A
spokesperson for Mandiant said: "We will continue to support law
enforcement and the industry past the close of our engagement."</span></p><p><span>Evidence from local investigators has revealed that – at the time of the hack – <span>cybersecurity</span> protections at the bank were shockingly weak. As previously reported, the financial institution was reportedly </span><a title="Bangladesh bank cyberheist was a hacker's dream after revelation it used no firewall" href="http://www.ibtimes.co.uk/bangladesh-bank-cyberheist-was-hackers-dream-after-revelation-it-used-no-firewall-1556253" target="_blank">not using a firewall</a>
and had purchased cheap routers to connect to Swift, the
secure-messaging system that links roughly 11,000 banks across the
globe.</p><p><span>In February, as-yet-unknown <span>cybercriminals</span>
accessed the Bangladesh bank's computer network and made 35 transfer
requests totalling $951m (€841m, £647m) to the New York federal reserve.
Five of these were eventually passed, worth $101m – however, one
transfer of $20m was later stalled due to a spelling error on the
request.</span></p><p><span>Most recently, <span>Atiur</span> <span>Rahman</span>, the former governor of the bank – who was pressured to resign following the hacking controversy – </span><a title="Former Bangladesh bank governor slams New York Fed for failing to stop $81m cyber-heist" href="http://www.ibtimes.co.uk/former-bangladesh-bank-governor-slams-new-york-fed-failing-stop-81m-cyber-heist-1566929" target="_blank">criticised</a>
the American institutions for failing to stop the theft. "Bangladesh
should not be blamed for something going wrong in the chain," he
claimed.</p> </div><br></div>