From the description this sounds like a highly targeted attack on proprietary software the bank uses to manage payments. (Most large banks don't use SWIFT Alliance Access directly - instead they have numerous internal systems that will ultimately use SWIFT as the final step for certain payments.) I would be very surprised to learn this was not a result of somebody who worked at the bank.