Ten years on, the Bangladesh Bank cyberheist — a landmark cybersecurity incident that rewrote the rules of nation state–sponsored hacking — continues to offer lessons for the cybersecurity community. Cyberspies hacked into Bangladesh Bank internal network and SWIFT (Society for Worldwide Interbank Financial Telecommunication) messaging environment before sending 35 fraudulent SWIFT payment instructions that attempted to steal $951 million from Bangladeshi foreign currency reserves, all held in an account with the Federal Reserve Bank of New York. Misspelt beneficiary names and US sanctions screening meant only five of the 35 transactions went through, but they were enough to send $81 million...