Showing Articles About
swift
-
Oliver Simonnet - 7 Feb 2020
Forging SWIFT MT Payment Messages for fun and pr... research!
A proof-of-concept attack demonstrated how a fraudulent SWIFT MT103 payment message could be forged and injected directly into a message queue. By leveraging system trust relationships and compromising a Message Queue administrator's access, a payment message could be introduced upstream in the payment processing system. The attack bypassed traditional security controls by targeting the message queue infrastructure rather than payment operators or application interfaces.