The World is at War (Online)
A few weeks ago, I wrote about the increasing information security threats that are faced by financial institutions, using the acronym CHEW to explain the main antagonists in the cyber arena. Broadly, this refers to Criminals, Hackers, Espionage and War, and although retail banks are rightly concerned with the first letter, capital markets institutions tend to focus on the last three.
Given the complexity of modern markets, it's something of a wonder that anybody outside of advanced operators would be able to do anything of substantial severity to something like, say, a clearing house. But stock exchanges are reporting an increasing number of attacks on their infrastructures, according to the International Organization of Securities Commissions (Iosco), in a report released last week. More than half, in fact, have suffered attacks over the past year.
Nasdaq, of course, has been publicly targeted, most recently with its bulletin board system being compromised. Websites are frequently the subject of distributed denial of service (DDoS) strikes, a favored method of assault from so-called ‘Hacktivist' groups or movements, like Anonymous, where botnets and zombie computers are slaved to launch access overload strategies, crashing servers in the process.
Impending Troubles
There's a growing acceptance of cybersecurity concerns in the industry. But the perpetrators are becoming more advanced, not only in terms of their attacks, but also in their knowledge of targets. Traditionally, the public has been keen to criticize the investment banking industry without necessarily understanding its ins and outs, but with the financial crisis that is starting to change. The Occupy movement, for instance, produced several documents of technical note, particularly through its American arm, and it's not a huge stretch to imagine that other activists (not necessarily related to Occupy) with a bone to pick, technology nous and the time to study market structure, could inflict damage.
This is the real danger, when intrusion and disruption are not necessarily motivated by financial concerns. After all, skimming a retail operation could yield cash, but crashing a depository (and, I've been told, first hand, they frequently get attacks or intrusion attempts that are very deliberate) won't buffer the bank balance. That's where the other letters come in ─ from political activists, or state actors looking to destabilize national infrastructures.
There's a growing acceptance of cybersecurity concerns in the industry. But the perpetrators are becoming more advanced, not only in terms of their attacks, but also in their knowledge of targets.
Prevention
All of this, reinforced by the latest Iosco report, means that new risks are constantly being presented in an organic environment such as modern techno-culture, and must be dealt with. The internet is often labeled as humanity's greatest achievement, the great democratizer and enabler of society, but it also carries its own dangers with it, which are ignored at the peril of those who choose to do so.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@waterstechnology.com or view our subscription options here: https://subscriptions.waterstechnology.com/subscribe
You are currently unable to print this content. Please contact info@waterstechnology.com to find out more.
You are currently unable to copy this content. Please contact info@waterstechnology.com to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@waterstechnology.com
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@waterstechnology.com
More on Trading Tech
‘Vibe coding is burning us out’
Vibe coding is rapidly spreading throughout the capital markets, and some are unhappy about it, while others believe the genie is out of the bottle. Engineers spoken to for this story share some choice words—and several expletives—about this new form of coding.
Broadridge-Nyfix, Delta Capita-Equilend, S&P-Ion, Trumid, and more
The Waters Cooler: A recap of the major tech and data news from the past week in the capital markets.
DTCC dives into public cloud
The clearing house has begun migrating its equities clearing and settlement systems to AWS, while its tokenization systems have migrated to Microsoft Azure ahead of their launch this fall.
Solving the last line of latency
Repurposed copper cables and hollow-core fiber can optimize latency even for firms who feel they’ve hit a ceiling, writes Vahan Sardaryan in this guest column.
LSEG’s FXall to launch credit-intermediated FX forwards service
Split Risk to allow buy side to tap best spot and swap prices to create forwards, and unbundle market and credit risk
APAC’s hidden opportunity is in the hands of wealth managers
Asia-Pacific’s financial firms have lofty growth ambitions that will come with high cost and complexity. To succeed, they’ll need a quality portfolio toolkit and a connected technology architecture, writes BlackRock’s James Verner.
Apac buy-side firms embrace AI and automation to bolster the business
How Apac buy-side firms are using AI, APIs and automation to transform investment workflows
TMX to undertake extended trading hours in Canadian equities
Exchange operator looks to keep pace with US markets and potentially undercut Canadian competitors.
