Risks Digest: A $60,000,000,000 fraud and other horrors

Miscellaneous and Personal Stuff I Must Share
1

How many Dopers are aware of The Forum (newsletter) on Risks to the Public in Computers and Related Systems ? The link will take you to the latest issue. I just edit the URL (e.g. change the final ‘55’ to ‘54’) to get prior issues.

Below I’ve copied a very small fraction of the headlines just from the past few days. Careful! If you start reading the newsletter, and clicking the most interesting links, it may become a full-time job!

Stock traders are accused of siphoning $60 billion from state coffers, in a scheme that one called “the devil’s machine.” Germany is the first country to try to get its money back.

Sixty Billion Dollars. That’s with an ‘S’ and a 'B."

The world’s 2,153 billionaires are richer than 4.6 billion people combined, Oxfam says

Georgia election systems could have been hacked before 2016 vote (Politico)
This was suspected years ago, but there was resistance (including erasure of main server data). Finally, after court order, we know: Yes, a key Georgia election server had suffered the “Shellshock” malware exploit.

Russians Hacked Ukrainian Gas Company at Center of Impeachment

Scientists Deliver, Once Again, a Horrifying Report About How Hot Earth Is Getting

A lazy fix 20 years ago means the Y2K bug is taking down computers now (New Scientist)

Hackers Cripple Airport Currency Exchanges, Seeking $6 Million Ransom (NYTimes)

Boeing 737s can’t land facing west (FAA)

Inside the Billion-Dollar Battle Over .Org (Steve Lohr)

Anatomy of a Lie: How Iran Covered Up the Downing of an Airliner

(This is just a tiny sampling, from the last two issues.)

2

17? That’s my guess. There should be a poll.

3

Another one; about four years ago hackers used the SWIFT network to steal about a billion dollars from the central bank of Bangladesh, although all but about a hundred million was recovered.

4

That’s a very interesting story. Cute tricks that North Korea (yes, it was them) used included:
(1) timing the exploit so holidays gave maximum delay: Bangladesh was closed for Islam’s Friday Sabbath when it started; they got the Saturday-Sunday shutdown in New York, and on Monday the Philippines (where money was picked up) was celebrating Chinese New Year!
(2) hacking printer software not to print. Otherwise the Bangladeshis would have seen suspicious printouts as soon as they came back to work.

A piece of bad luck for the hackers kept them from getting much more than “only” $100 million. An account name they used resembled, by chance, some other fraudster, so software at the Fed-Res of N.Y. automatically put a hold on those transactions.

Meanwhile I read some more back issues.  Lots of interesting — and scary — stories.

(I read Risks Digest decades ago, but had forgotten about it.  I was reminded a few hours ago when I logged into an old Yahoo mail I almost never use — that account subscribes to Risks Digest.)
5

In 2014 about a billion dollars got swiped from Moldova; I haven’t read anything about the funds ever being recovered.

6

I knew of it.

The RISKS Digest has been around, in one format or another, for a long long time, all the way back into the Usenet days. I saw excerpts and discussions of it as far back as the mid-1980’s.

7

It has more impact written as $60,000,000,000.00. But a lot less if expressed as “1/50,000th of the US debt”.