Far Eastern International Bank was targeted in an October 2017 cyber-enabled heist that abused systems connected to the SWIFT network and attempted unauthorized overseas transfers, with McAfee reporting spear-phishing, backdoor malware, credential harvesting, scheduled tasks, and endpoint-security disruption. BAE Systems linked the intrusion to Lazarus tools and Hermes ransomware, assessing the ransomware activity as likely distraction or cover while bank-fraud operations, internal reconnaissance, credential use, SMB-based lateral movement, and network encryption occurred.