According to the European Union Agency for Law Enforcement Cooperation (Europol), the gang targeted financial
transfers and ATM networks from late 2013
by using a series of
malware attacks called Anunak and Carbanak, before more recently adapting security - testing software called Cobalt Strike into heist - ready
malware.