They hacked the Bangladesh Central Bank, but stole money from the New York Fed. It is even debatable if the NY Fed is even at fault given that the hackers had legitimate credentials to make the transfer (the Bangladeshis are arguing that the NY Fed is still responsible because they should have flagged the Casinos as unusual and stopped it).
You'd think that with accounts as large as these they would have a "whitelist" of valid accounts to transfer funds to, and some long convoluted process to add additional whitelist entries.
They hacked the Bangladesh Central Bank, but stole money from the New York Fed. It is even debatable if the NY Fed is even at fault given that the hackers had legitimate credentials to make the transfer (the Bangladeshis are arguing that the NY Fed is still responsible because they should have flagged the Casinos as unusual and stopped it).
You'd think that with accounts as large as these they would have a "whitelist" of valid accounts to transfer funds to, and some long convoluted process to add additional whitelist entries.