Duration | November–December 2021 |
---|---|
Type | Bank fraud |
Theme | Cybercrime |
Target | 700+ Banco de Oro (BDO) accountholders |
Participants | Involved financial institutions
|
Suspects | 2–4 alleged hackers; the pseudonym "Mark Nagoyo" was used. |
In late 2021, at least 700 account holders of the Philippine bank Banco de Oro (BDO) lost their money through unauthorized bank transfers.
From late November to early December 2021, [1] numerous accountholders of BDO Unibank (Banco de Oro; BDO) lost their money through unauthorized bank transfers. The funds were noted to have been transferred to multiple Unionbank accounts under the name of a certain "Mark Nagoyo". [2] [3] Fraud victims lost money ranging from ₱25,000 to ₱50,000 per BDO account. [1]
The scheme has been characterized to have made through hacking. [4] Several Facebook groups were made by the fraud victims, where many maintained that they did not click any dubious links, sent through messaging apps, SMS, or email, that would make them fall for a phishing attempt. Other accounts suggest that they did not receive any one-time password (OTP), that would have alerted them to someone making an unauthorized login to their bank accounts, receive any OTP that a new device was linked to their accounts, and some had funds larger than the daily limit transferred out of their accounts. Manila Bulletin Technews also reported that funds worth ₱5 million transferred to one Unionbank account were used to buy Bitcoin on December 11. [1]
There are also accounts of victims saying that perpetrators used other platforms such as GCash and the Bank of the Philippine Islands (BPI) instead of Unionbank. [5]
The name "Mark Nagoyo", [lower-alpha 1] which is associated to the Unionbank accounts, is believed to be fictitious or a pseudonym. By December 15, the Bangko Sentral ng Pilipinas, the Philippines' central bank, has identified two to four people as perpetrators of the hack. These people were neither employees of BDO or Unionbank. [7] Five suspects, two Nigerian nationals and three Filipinos have been arrested in relation to the hack. [8]
BDO released a statement on December 12, 2021, that some of its accountholders were affected by "a sophisticated fraud technique" and has pledged to reimburse the lost funds to the fraud victims and bolster its security infrastructure. The Bangko Sentral ng Pilipinas, has said that it is monitoring the increase of complaints on the incident on various social media platforms and is working closely with BDO and Unionbank over the incident. [9] [3] Fewer than ten Unionbank accounts which received funds from BDO accounts have been frozen in response to the incident. [10] The National Privacy Commission also coordinated with BDO to determined if any personal information was compromised in connection to the incident. [11] Globe Telecom has also pledged assistance to the central bank on its investigation. [12]
On December 14, BDO announced that it is reimbursing funds of around 700 account holders. [13] It was reported that BDO is requiring victims to sign a quitclaim before reimbursing their lost money, in exchange of not filing legal charges against the bank. According to DTI undersecretary Vic Dimagiba, this could put victims at a disadvantage since they could potentially be entitled to more claims than the funds lost to the hack; such as losses arising from the inability to process the affected account holders' housing loan installment payment. [5]
The BSP on December 17, disclosed that its initial findings suggests that the stolen funds from BDO may have also been transferred to multiple banks and non-bank financial institutions financial institutions aside Unionbank. [14]
On January 21, 2022, the National Bureau of Investigation presented five suspects who were arrested in relation to the hack. [8]
Bayan Muna has called for the Committee on Banks and Financial Intermediaries of the House of Representatives to launch a legislative inquiry over the incident. [15]
The Bankers Association of the Philippines issued a statement reminding bank accountholders to never give their personal information, including OTPs to other people and urged the public to remain vigilant against cybercrimes. [16]
The Philippine peso, also referred to by its Filipino name piso, is the official currency of the Philippines. It is subdivided into 100 sentimo, also called centavos.
The Bangko Sentral ng Pilipinas is the central bank of the Philippines. It was established on July 3, 1993, pursuant to the provision of Republic Act 7653 or the New Central Bank Act of 1993 as amended by Republic Act 11211 or the New Central Bank Act of 2019. The principal author was Senator Franklin Drilon. It was signed by President Rodrigo Duterte.
The Bank of the Philippine Islands is a universal bank in the Philippines. It is the first bank in both the Philippines and Southeast Asia. It is the fourth largest bank in terms of assets, the second largest bank in terms of market capitalization, and one of the most profitable banks in the Philippines.
BancNet is a Philippine-based interbank network connecting the ATM networks of local and offshore banks, and the country's single interbank network in the Philippines in terms of the number of member banks and annual transactions. Due to its status as the country's single ATM switch operator, it is designated by the Bangko Sentral ng Pilipinas (BSP) as the country's national ATM network.
BDO Unibank, Inc., commonly known as Banco de Oro (BDO), is a Philippine banking company based in Mandaluyong, the Philippines. BDO Unibank is a member of the SM Group and so can be found at SM Malls throughout the country.
The Union Bank of the Philippines, Inc., more commonly known as UnionBank, is one of the universal banks in the Philippines and the ninth largest bank in the country by assets.
The Rizal Commercial Banking Corporation, commonly known as RCBC, is one of the largest universal banks in the Philippines with total consolidated resources of Ph₱ 1.2 trillion. It was established in 1960 as a development bank and is licensed by the Bangko Sentral ng Pilipinas (BSP) for both commercial and investment banking. It is currently headquartered at RCBC Plaza in Makati, Metro Manila.
Export and Industry Bank (EIB), also known as Exportbank, was a commercial bank in the Philippines that operated between 1996 and 2012. It was closed in 2012 by the Central Bank of the Philippines as being insolvent.
"Operation Big Bird" was the attempt of the Philippine Government during the presidency of Corazon Aquino to recover the alleged US$7.5 billion of hidden accounts and assets of President Ferdinand Marcos and his family in the Swiss banks. Conceived by Philippine banker Michael de Guzman, it commenced shortly after Marcos was forced into asylum in the United States. Initially, Operation Big Bird did not recover any money with two differing reports by Representative Victorio Chaves and Senator Jovito Salonga. Chaves laid the blame upon Salonga, Solicitor-General Sedfrey Ordoñez and the Swiss bank lawyers. Salonga countered that Ordoñez had prevented the Philippine government from losing a large sum of money. Evidence suggests that de Guzman acted in good faith on behalf of the new government but that a double cross may have been present.
The Philippine one hundred-peso note (₱100) is a denomination of Philippine currency. Philippine president Manuel A. Roxas is currently featured on the front side of the bill, while the Mayon Volcano and the whale shark are featured on the reverse side.
The Bangladesh Bank robbery, also known colloquially as the Bangladesh Bank cyber heist, was a theft that took place in February 2016. Thirty-five fraudulent instructions were issued by security hackers via the SWIFT network to illegally transfer close to US$1 billion from the Federal Reserve Bank of New York account belonging to Bangladesh Bank, the central bank of Bangladesh. Five of the thirty-five fraudulent instructions were successful in transferring US$101 million, with US$81 million traced to the Philippines and US$20 million to Sri Lanka. The Federal Reserve Bank of New York blocked the remaining thirty transactions, amounting to US$850 million, due to suspicions raised by a misspelled instruction. As of 2018, only around US$18 million of the US$81 million transferred to the Philippines has been recovered, and all the money transferred to Sri Lanka has since been recovered. Most of the money transferred to the Philippines went to four personal accounts, held by single individuals, and not to companies or corporations.
In 2015 and 2016, a series of cyberattacks using the SWIFT banking network were reported, resulting in the successful theft of millions of dollars. The attacks were perpetrated by a hacker group known as APT 38 whose tactics, techniques and procedure overlap with the infamous Lazarus Group who are believed to be behind the Sony attacks. Experts agree that APT 38 was formed following the March 2013 sanctions and the first known operations connected to this group occurred in February 2014. If the attribution to North Korea is accurate, it would be the first known incident of a state actor using cyberattacks to steal funds.
Nestor Aldave Espenilla Jr. was a Filipino banker who served as the fourth governor of the Bangko Sentral ng Pilipinas (BSP) from 2017 until his death in 2019. He began working for the BSP in 1981 and was a deputy governor under his predecessor Amando Tetangco Jr.
On June 7, 2017, the Bank of the Philippine Islands (BPI) suspended its online transaction and automatic teller machine services amidst reports of money missing from its account holders. There was speculation that BPI was compromised by hackers but the bank claimed that the problem was caused by an internal data processing error. The scope of the issue was nationwide according to the bank and also said that only a small portion of its customers were affected and that most of them were in Metro Manila.
GCash is a Filipino mobile payments service owned by Globe Fintech Innovations, Inc., and operated by its wholly-owned subsidiary, G-Xchange, Inc.
The Marcos family, a political family in the Philippines, owns various assets that Philippine courts have determined to have been acquired through illicit means during the presidency of Ferdinand Marcos from 1965–1986. These assets are referred to using several terms, including "ill-gotten wealth" and "unexplained wealth," while some authors such as Belinda Aquino and Philippine Senator Jovito Salonga more bluntly refer to it as the "Marcos Plunder".
Maya, is a Filipino financial services and digital payments company based in Metro Manila, Philippines.
Digital banks in the Philippines are a new formal category of banks which were only approved by the Bangko Sentral ng Pilipinas (BSP), the country's central bank, in 2020. The first such banks launched in the Philippines were Tonik, Overseas Filipino Bank, and UnionDigital of UnionBank Corp. Several more banks were approved by the BSP before 2021, when it announced that it would stop approving the establishment of further digital banks for three years, in order to strengthen the industry and assure healthy competition among its players.
Tonik Digital Bank, Inc., commonly known as Tonik, is an all-digital bank which was launched in the Philippines in 2021, notable for being the first all-digital bank, or "neobank" in Southeast Asia. Its consumer products range from deposits, payments, debit cards, and loans. It operates with its own bank license issued by the Bangko Sentral ng Pilipinas (BSP), with deposits insured by the Philippine Deposit Insurance Corporation (PDIC). Its holding company is Singapore-based Tonik Financial Pte Ltd.