The Crime Scene
Who were the criminals in this case?
The cleaning crew!
What year did the attack on Mitsui Bank happen?
2004-2005
What was the biggest mistake the bank made that let this happen?
They didn’t properly check the cleaning crew or secure their computers.
What does MFA stand for?
Multi-Factor Authentication
This cyber attack happens when a hacker pretends to be someone trustworthy to trick you into giving away personal information, and passwords, or clicking a dangerous link. It often comes through emails, text messages, or fake websites. What is this called?
Phishing
What device did the criminals use to steal data?
Keylogger
How many criminals were arrested?
Eight people were arrested.
Why didn’t IT managers worry about USB devices?
They thought it wasn’t a big deal and didn’t take action!
What does SIEM stand for?
Security Information and Event Management
What type of attack involves secretly installing software to record a user’s keystrokes?
Keylogger Attack
Where did the criminals try to transfer stolen money?
A member of the group tried to send £23 million ($29 million) to their personal account.
When was the first warning about the attack?
In October 2004, Mitsui Bank noticed something strange and told the police.
This happens when an unauthorized person sneaks into a restricted area by following someone who has proper access. It often happens when an employee holds the door open for someone without checking if they should be there. What is this called?
What is Tailgating?
What is Zero Trust Architecture?
No one is trusted automatically
This type of training helps employees recognize, prevent, and respond to security risks caused by people inside the organization whether it's intentional or accidental. It covers topics like detecting suspicious behavior, reporting security concerns, and following company policies. What is this called?
Insider Threat Awareness Training
Why did the criminals erase the CCTV footage?
To cover their tracks so no one would see what they were doing!
What was the total amount of money they wanted to steal?
£220 million (about $278 million)
What’s an example of a physical security failure in this case?
The keyloggers were still attached to computers when investigators arrived!
What’s a simple way to stop insider threats?
Security training
What is the main reason why financial institutions are prime targets for cybercriminals?
Potential for High Financial Gain
Did the criminals succeed in stealing any money?
Nope! The attack was caught before they could take anything.
In what country was one of the criminals caught trying to transfer money?
Israel
Why didn’t the bank detect this attack sooner?
Lack of monitoring and awareness of insider threats.
What security principle means only giving access to people who truly need it?
Need-to-Know Principle
You receive an email from your "boss" asking you to buy gift cards and send the codes ASAP. The email looks a little strange, and you weren’t expecting this request. What should you do? A. Buy the gift cards quickly to avoid trouble B. Reply and ask for more details C. Double-check the email address and contact your boss through a different method D. Click the links in the email to see if they look real
C. Double-check the email address and contact your boss through a different method!