Two other banks -- NCC Bank and Prime Bank -- also faced cyberattacks, but they claimed they were able to avert financial losses. This was the biggest cyberattack after hackers made off with $81 million from Bangladesh Bank’s account with the Federal Reserve Bank of New York around three and a half years ago. But in the case of the DBBL, hackers planted a malware in the bank’s switch (card management system) around three months ago and made a perfect replica of the switch, which the bank could not detect. The DBBL reported the matter to the BB which held two meetings with the heads of IT, retail banking and card divisions of all banks in the middle of last month to discuss the issue. Out of 58 banks in the country, only three -- Eastern Bank Limited, City Bank and Mutual Trust Bank Limited -- have got certification for complying with the Payment Card Industry Data Security Standard (PCI DSS) set by Visa, MasterCard, Discover Financial Services, JCB International and American Express. In a study last year, Bangladesh Institute of Bank Management (BIBM) found 28 percent of the banks had no preparation to tackle a largescale cyberattack.