Important to state upfront, it's not completely clear whether this event actually happened or whether this was a description of a plausible scenario from security researchers, Kaspersky Lab. Kaspersky described "an unprecedented case of wholesale bank fraud" explaining it was the first time they observed such a large-scale attack.
Either way, the case provides some useful content about new/missing controls and how quickly, without relatively simple precautions in place (multi-factor authentication), a domain switch can undermine practically all other implemented security measures such as the encrypted website or locked down network.
Want to discuss this case? You can purchase a 30 minute conference call with our analysts to discuss this case and the implications it has for your organisation. Just select the time and date that works for you:
We've done the analysis so you can make the decisions