Prime Bank

Prime Bank is a Bangladeshi financial institution that provides core banking services, including ATM cash withdrawal facilities and payment system processing, as indicated by its operational infrastructure targeted in a major cyber incident. The bank operates within Bangladesh's domestic financial sector, serving customers through physical and electronic banking channels. Its role in the national banking ecosystem is defined by its participation in interbank payment networks and ATM interoperability, which are standard functions for commercial banks in the country. The institution's technological footprint includes systems that manage transaction limits and ATM control, which became focal points for attackers. While specific metrics regarding branch count, customer base, or asset size are not provided in the available information, its inclusion among multiple banks targeted confirms its position within the mainstream banking landscape of Bangladesh. The bank's services are thus oriented toward retail and basic commercial banking, consistent with its profile as a nationally operating entity.

In May 2019, Prime Bank was among several Bangladeshi banks compromised in a financially motivated cyberattack attributed to the Silence group, a Russian-speaking threat actor. The intrusion involved the deployment of malware such as Silence.Downloader and Silence.ProxyBot to gain prolonged network access, manipulate ATM transaction limits, and remotely control cash-dispensing machines. This campaign resulted in unauthorized withdrawals totaling millions of dollars across the affected banks, with evidence linking the activity to a command-and-control server and Ukrainian money mules who were later arrested. While one bank in the cohort suffered direct financial losses, others, potentially including Prime Bank, may have mitigated theft through defensive measures; however, all institutions experienced significant security breaches affecting their payment systems and ATM networks. The incident underscores the vulnerability of banking infrastructure in Bangladesh to sophisticated, transnational cybercriminal operations and represents a notable event in the institution's cybersecurity history. The attack methodology, involving lateral movement and exploitation of transaction processing systems, highlights persistent risks to financial sector integrity in the region.