I would suggest getting with your IT department or vendor and have a discussion on how they can assist you with obtaining IP addresses, etc from these cyber events. You should include all information that the bank has available to them to file the SAR. If an email address was compromised to send a wire request to your bank, you should be able to obtain the IP address it was sent from. It may take some digging, but it should be able to be obtained. Also, chances are it is a spoofed IP address, but if enough SARs are filed with the spoofed IP address, law enforcement may be able to trace the fraudster down. Hopefully that helps you out some.