Society for Worldwide Interbank Financial Telecommunication

SWIFT, also known as the Society for Worldwide Interbank Financial Telecommunication, operates a global financial messaging network. This network facilitates secure communication and standardized transaction messages between financial institutions worldwide. Its core service involves enabling banks and other financial entities to send and receive information pertaining to payments, securities transactions, and treasury operations securely and reliably. The network serves a vast international market of banks and financial organizations requiring trusted communication for cross-border and domestic financial transfers.

Headquartered in Belgium, SWIFT plays a critical role in the global financial infrastructure by providing the messaging backbone for payment instructions between institutions. The 2016 incident involving the Odinaff hacking group demonstrated SWIFT's significant position as a target for sophisticated cybercriminals aiming to compromise payment systems. Attackers employed methods similar to the Bangladesh Bank heist, deploying malware tools like Mimikatz, PsExec, and PowerShell via phishing emails to infiltrate financial institutions using SWIFT. Their tactics included intercepting SWIFT messages containing specific transaction keywords and using malware components to suppress these messages locally, hindering detection and recovery efforts by recipients. This event underscored a strategic shift towards directly targeting financial institutions utilizing the SWIFT network, highlighting persistent security challenges associated with its central role in global finance. Symantec researchers identified these tools and tactics, confirming the group's focus on compromising payment messaging systems.