2021 Banco de Oro hack

Last updated
2021 Banco de Oro hack
DurationNovember–December 2021
Type Bank fraud
Theme Cybercrime
Target700+ Banco de Oro (BDO) accountholders
ParticipantsInvolved financial institutions
  • Banco de Oro (BDO)
  • Unionbank
  • Potentially other banks and non-bank financial institutions
Suspects2–4 alleged hackers; the pseudonym "Mark Nagoyo" was used.

In late 2021, at least 700 account holders of the Philippine bank Banco de Oro (BDO) lost their money through unauthorized bank transfers.

Contents

Fraud

From late November to early December 2021, [1] numerous accountholders of BDO Unibank (Banco de Oro; BDO) lost their money through unauthorized bank transfers. The funds were noted to have been transferred to multiple Unionbank accounts under the name of a certain "Mark Nagoyo". [2] [3] Fraud victims lost money ranging from ₱25,000 to ₱50,000 per BDO account. [1]

The scheme has been characterized to have made through hacking. [4] Several Facebook groups were made by the fraud victims, where many maintained that they did not click any dubious links, sent through messaging apps, SMS, or email, that would make them fall for a phishing attempt. Other accounts suggest that they did not receive any one-time password (OTP), that would have alerted them to someone making an unauthorized login to their bank accounts, receive any OTP that a new device was linked to their accounts, and some had funds larger than the daily limit transferred out of their accounts. Manila Bulletin Technews also reported that funds worth ₱5 million transferred to one Unionbank account were used to buy Bitcoin on December 11. [1]

There are also accounts of victims saying that perpetrators used other platforms such as GCash and the Bank of the Philippine Islands (BPI) instead of Unionbank. [5]

Perpetrators

The name "Mark Nagoyo", [lower-alpha 1] which is associated to the Unionbank accounts, is believed to be fictitious or a pseudonym. By December 15, the Bangko Sentral ng Pilipinas, the Philippines' central bank, has identified two to four people as perpetrators of the hack. These people were neither employees of BDO or Unionbank. [7] Five suspects, two Nigerian nationals and three Filipinos have been arrested in relation to the hack. [8]

Response

BDO released a statement on December 12, 2021, that some of its accountholders were affected by "a sophisticated fraud technique" and has pledged to reimburse the lost funds to the fraud victims and bolster its security infrastructure. The Bangko Sentral ng Pilipinas, has said that it is monitoring the increase of complaints on the incident on various social media platforms and is working closely with BDO and Unionbank over the incident. [9] [3] Fewer than ten Unionbank accounts which received funds from BDO accounts have been frozen in response to the incident. [10] The National Privacy Commission also coordinated with BDO to determined if any personal information was compromised in connection to the incident. [11] Globe Telecom has also pledged assistance to the central bank on its investigation. [12]

On December 14, BDO announced that it is reimbursing funds of around 700 account holders. [13] It was reported that BDO is requiring victims to sign a quitclaim before reimbursing their lost money, in exchange of not filing legal charges against the bank. According to DTI undersecretary Vic Dimagiba, this could put victims at a disadvantage since they could potentially be entitled to more claims than the funds lost to the hack; such as losses arising from the inability to process the affected account holders' housing loan installment payment. [5]

The BSP on December 17, disclosed that its initial findings suggests that the stolen funds from BDO may have also been transferred to multiple banks and non-bank financial institutions financial institutions aside Unionbank. [14]

On January 21, 2022, the National Bureau of Investigation presented five suspects who were arrested in relation to the hack. [8]

Reactions

Bayan Muna has called for the Committee on Banks and Financial Intermediaries of the House of Representatives to launch a legislative inquiry over the incident. [15]

The Bankers Association of the Philippines issued a statement reminding bank accountholders to never give their personal information, including OTPs to other people and urged the public to remain vigilant against cybercrimes. [16]

See also

Notes

  1. Nagoyo is a Filipino word that derives from the root word goyo , meaning "joking (with someone)" or "something done to make a fool of someone". [6]

Related Research Articles

<span class="mw-page-title-main">Philippine peso</span> Currency of the Philippines

The Philippine peso, also referred to by its Filipino name piso, is the official currency of the Philippines. It is subdivided into 100 sentimo, also called centavos.

<span class="mw-page-title-main">Bangko Sentral ng Pilipinas</span> Central bank of the Philippines

The Bangko Sentral ng Pilipinas is the central bank of the Philippines. It was established on July 3, 1993, pursuant to the provision of Republic Act 7653 or the New Central Bank Act of 1993 as amended by Republic Act 11211 or the New Central Bank Act of 2019. The principal author was Senator Franklin Drilon. It was signed by President Rodrigo Duterte.

BancNet is a Philippine-based interbank network connecting the ATM networks of local and offshore banks, and the country's single interbank network in the Philippines in terms of the number of member banks and annual transactions. Due to its status as the country's single ATM switch operator, it is designated by the Bangko Sentral ng Pilipinas (BSP) as the country's national ATM network.

<span class="mw-page-title-main">Banco de Oro</span> Bank in the Philippines

BDO Unibank, Inc., commonly known as Banco de Oro (BDO), is a Philippine banking company based in Mandaluyong. In terms of total assets, the firm is the largest bank in the Philippines and 15th largest in Southeast Asia as of March 31, 2016. BDO Unibank is also a member of SM Group. It is also the largest bank in the country by market capitalization.

<span class="mw-page-title-main">Unionbank (Philippines)</span> Universal banking group located in the Philippines

The Union Bank of the Philippines, Inc., more commonly known as UnionBank, is one of the universal banks in the Philippines and the ninth largest bank in the country by assets.

<span class="mw-page-title-main">Rizal Commercial Banking Corporation</span> Bank in the Philippines

The Rizal Commercial Banking Corporation, commonly known as RCBC, is one of the largest universal banks in the Philippines with total consolidated resources of Ph₱ 1.2 trillion. It was established in 1960 as a development bank and is licensed by the Bangko Sentral ng Pilipinas (BSP) for both commercial and investment banking. It is currently headquartered at RCBC Plaza in Makati, Metro Manila.

<span class="mw-page-title-main">Exportbank</span>

Export and Industry Bank (EIB), also known as Exportbank, was a commercial bank in the Philippines that operated between 1996 and 2012. It was closed in 2012 by the Central Bank of the Philippines as being insolvent.

"Operation Big Bird" was the attempt of the Philippine Government during the presidency of Corazon Aquino to recover the alleged US$7.5 billion of hidden accounts and assets of President Ferdinand Marcos and his family in the Swiss banks. Conceived by Philippine banker Michael de Guzman, it commenced shortly after Marcos was forced into asylum in the United States. Initially, Operation Big Bird did not recover any money with two differing reports by Representative Victorio Chaves and Senator Jovito Salonga. Chaves laid the blame upon Salonga, Solicitor-General Sedfrey Ordoñez and the Swiss bank lawyers. Salonga countered that Ordoñez had prevented the Philippine government from losing a large sum of money. Evidence suggests that de Guzman acted in good faith on behalf of the new government but that a double cross may have been present.

<span class="mw-page-title-main">Philippine five hundred-peso note</span> Philippine currency denomination

The Philippine five hundred-peso note (₱500) is a denomination of Philippine currency. Senator Benigno Aquino Jr. and his wife, President Corazon Aquino are currently featured on the front side of the note, while the Puerto Princesa Subterranean River National Park and the blue-naped parrot are featured on the reverse side. BSP will issue the polymer version of this denomination by 2023 and will be the second denomination in this format after the 1000-Piso polymer banknote issued last April 2022.

<span class="mw-page-title-main">Philippine one thousand-peso note</span> Currency denomination

The Philippine one thousand-peso note is a denomination of Philippine currency. It is the largest denomination in general circulation in the Philippines. It is currently the only Philippine peso denomination that has a polymer banknote version.

<span class="mw-page-title-main">Bangladesh Bank robbery</span> Heist via the SWIFT network from a Bangladesh Bank account at the Federal Reserve Bank of New York

The Bangladesh Bank robbery, also known colloquially as the Bangladesh Bank cyber heist, was a theft that took place in February 2016. Thirty-five fraudulent instructions were issued by security hackers via the SWIFT network to illegally transfer close to US$1 billion from the Federal Reserve Bank of New York account belonging to Bangladesh Bank, the central bank of Bangladesh. Five of the thirty-five fraudulent instructions were successful in transferring US$101 million, with US$81 million traced to the Philippines and US$20 million to Sri Lanka. The Federal Reserve Bank of New York blocked the remaining thirty transactions, amounting to US$850 million, due to suspicions raised by a misspelled instruction. As of 2018, only around US$18 million of the US$81 million transferred to the Philippines has been recovered, and all the money transferred to Sri Lanka has since been recovered. Most of the money transferred to the Philippines went to four personal accounts, held by single individuals, and not to companies or corporations.

In 2015 and 2016, a series of cyberattacks using the SWIFT banking network were reported, resulting in the successful theft of millions of dollars. The attacks were perpetrated by a hacker group known as APT 38 whose tactics, techniques and procedure overlap with the infamous Lazarus Group who are believed to be behind the Sony attacks. Experts agree that APT 38 was formed following the March 2013 sanctions and the first known operations connected to this group occurred in February 2014. If the attribution to North Korea is accurate, it would be the first known incident of a state actor using cyberattacks to steal funds.

<span class="mw-page-title-main">Nestor Espenilla</span> 4th governor of the Bangko Sentral ng Pilipinas

Nestor Aldave Espenilla Jr. was a Filipino banker who served as the fourth governor of the Bangko Sentral ng Pilipinas (BSP) from 2017 until his death in 2019. He began working for the BSP in 1981 and was a deputy governor under his predecessor Amando Tetangco Jr.

<span class="mw-page-title-main">2017 Bank of the Philippine Islands systems glitch</span>

On June 7, 2017, the Bank of the Philippine Islands (BPI) suspended its online transaction and automatic teller machine services amidst reports of money missing from its account holders. There was speculation that BPI was compromised by hackers but the bank claimed that the problem was caused by an internal data processing error. The scope of the issue was nationwide according to the bank and also said that only a small portion of its customers were affected and that most of them were in Metro Manila.

DuterteNomics is a catch-all term referring to the socioeconomic policies of Rodrigo Duterte, the 16th president of the Philippines. A significant part of these policies include the development of infrastructure and industries in the Philippines.

GCash is a Philippine mobile payments service owned by Globe Fintech Innovations, Inc., and operated by its wholly-owned subsidiary, G-Xchange, Inc.

Maya, is a Filipino financial services and digital payments company based in Metro Manila, Philippines.

Digital banks in the Philippines are a new formal category of banks which were only approved by the Bangko Sentral ng Pilipinas (BSP), the country's central bank, in 2020. The first such banks launched in the Philippines were Tonik, Overseas Filipino Bank, and UnionDigital of UnionBank Corp. Several more banks were approved by the BSP before 2021, when it announced that it would stop approving the establishment of further digital banks for three years, in order to strengthen the industry and assure healthy competition among its players.

Tonik Digital Bank, Inc., commonly known as Tonik, is an all-digital bank which was launched in the Philippines in 2021, notable for being the first all-digital bank, or "neobank" in Southeast Asia. Its consumer products range from deposits, payments, debit cards, and loans. It operates with its own bank license issued by the Bangko Sentral ng Pilipinas (BSP), with deposits insured by the Philippine Deposit Insurance Corporation (PDIC). Its holding company is Singapore-based Tonik Financial Pte Ltd

References

  1. 1 2 3 Samaniego, Art (December 11, 2021). "Hacked BDO accounts are used to buy Bitcoin via UnionBank". Manila Bulletin. Retrieved December 12, 2021.
  2. "Philippines battles surge in complaints of account hacking". Bangkok Post. Reuters. December 12, 2021. Retrieved December 12, 2021.
  3. 1 2 "BDO vows to reimburse fraud victims, strengthen security controls". CNN Philippines. December 12, 2021. Retrieved December 12, 2021.
  4. Torregoza, Hannah (December 12, 2021). "Poe calls for swift, transparent probe on bank hacking incident". Manila Bulletin. Retrieved December 12, 2021.
  5. 1 2 de Guzman, Warren (December 15, 2021). "Biktima ng BDO hack dehado umano sa quitclaim" [Victim of BDO hack at a disadvantage due to quitclaim]. ABS-CBN News (in Filipino). Retrieved December 15, 2021.
  6. Cepeda, Mara (December 12, 2021). "BDO clients lose money due to alleged online banking hack". Rappler. Retrieved December 20, 2021.
  7. Cordero, Ted (December 15, 2021). "BSP traces two to four hackers behind 'Mark Nagoyo' account". GMA News. Retrieved December 15, 2021.
  8. 1 2 Baroña, Franco Jose (21 January 2022). "5 arrested in BDO cyberattack". The Manila Times. Retrieved 22 January 2022.
  9. Cepeda, Mara (December 12, 2021). "BDO clients lose money due to alleged online banking hack". Rappler. Retrieved December 12, 2021.
  10. "Philippine central bank probes complaints of account hacking". South China Morning Post. December 12, 2021. Retrieved December 12, 2021.
  11. De Guzman, Warren (December 13, 2021). "Privacy watchdog checks if personal info leaked in BDO incident". ABS-CBN News. Retrieved December 13, 2021.
  12. Fenol, Jessica (December 13, 2021). "Globe says ready to help in probe on bank fraud". ABS-CBN News. Retrieved December 13, 2021.
  13. Caraballo, Mayvelin (December 14, 2021). "BDO to reimburse 700 clients affected by hacking". The Manila Times. Retrieved December 14, 2021.
  14. Chipongian, Lee C. (December 17, 2021). "More financial institutions involved in BDO hacking – BSP". Manila Bulletin. Retrieved December 17, 2021.
  15. Patag, Kristine Joy; Luna, Franco (December 13, 2021). "House reps urge inquiry into unauthorized BDO money transfers". The Philippine Star. Retrieved December 13, 2021.
  16. Chipongian, Lee (December 12, 2021). "BDO to reimburse affected clients soon; bankers group call for vigilance against cyber crimes". Manila Bulletin. Retrieved December 12, 2021.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.