The World is at War (Online)
A few weeks ago, I wrote about the increasing information security threats that are faced by financial institutions, using the acronym CHEW to explain the main antagonists in the cyber arena. Broadly, this refers to Criminals, Hackers, Espionage and War, and although retail banks are rightly concerned with the first letter, capital markets institutions tend to focus on the last three.
Given the complexity of modern markets, it's something of a wonder that anybody outside of advanced operators would be able to do anything of substantial severity to something like, say, a clearing house. But stock exchanges are reporting an increasing number of attacks on their infrastructures, according to the International Organization of Securities Commissions (Iosco), in a report released last week. More than half, in fact, have suffered attacks over the past year.
Nasdaq, of course, has been publicly targeted, most recently with its bulletin board system being compromised. Websites are frequently the subject of distributed denial of service (DDoS) strikes, a favored method of assault from so-called ‘Hacktivist' groups or movements, like Anonymous, where botnets and zombie computers are slaved to launch access overload strategies, crashing servers in the process.
Impending Troubles
There's a growing acceptance of cybersecurity concerns in the industry. But the perpetrators are becoming more advanced, not only in terms of their attacks, but also in their knowledge of targets. Traditionally, the public has been keen to criticize the investment banking industry without necessarily understanding its ins and outs, but with the financial crisis that is starting to change. The Occupy movement, for instance, produced several documents of technical note, particularly through its American arm, and it's not a huge stretch to imagine that other activists (not necessarily related to Occupy) with a bone to pick, technology nous and the time to study market structure, could inflict damage.
This is the real danger, when intrusion and disruption are not necessarily motivated by financial concerns. After all, skimming a retail operation could yield cash, but crashing a depository (and, I've been told, first hand, they frequently get attacks or intrusion attempts that are very deliberate) won't buffer the bank balance. That's where the other letters come in ─ from political activists, or state actors looking to destabilize national infrastructures.
There's a growing acceptance of cybersecurity concerns in the industry. But the perpetrators are becoming more advanced, not only in terms of their attacks, but also in their knowledge of targets.
Prevention
All of this, reinforced by the latest Iosco report, means that new risks are constantly being presented in an organic environment such as modern techno-culture, and must be dealt with. The internet is often labeled as humanity's greatest achievement, the great democratizer and enabler of society, but it also carries its own dangers with it, which are ignored at the peril of those who choose to do so.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@waterstechnology.com or view our subscription options here: https://subscriptions.waterstechnology.com/subscribe
You are currently unable to print this content. Please contact info@waterstechnology.com to find out more.
You are currently unable to copy this content. Please contact info@waterstechnology.com to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@waterstechnology.com
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@waterstechnology.com
More on Trading Tech
Speakerbus ceases operations amid financial turmoil
Sources say customers were recently notified that the trader voice vendor was preparing to file for administration and would no longer be operational.
SS&C withdraws SEC application for clearing exemption
The fintech had been granted exemption in 2015 for SSCNet, a global trade network, that allowed it to provide matching and ETC services.
Standard Chartered CDO on AI, CAT on life support, Paxos files for clearing status, and more
The Waters Cooler: FIX updates MMT, a Finnish datacenter hangs in the balance, and partnerships galore in this week’s news roundup.
CAT on life support after appeals court ruling
Ahead of a comprehensive review promised by the SEC, lawyers believe that the recent overturn of the Consolidated Audit Trail’s funding order could herald its demise.
Paxos files to become SEC-registered clearing agency
The application comes after the blockchain infrastructure company completed a pilot in 2021 to test its settlement service.
Risk mitigation in round-the-clock trading
Tied closely with shortened settlement times, overnight trading poses operational and technical risks, writes Sergey Samushin, head of exchange solutions at Devexperts, in this guest column.
Genesis CEO steps down, Wells Fargo deploys agents, DTCC sells Report Hub, and more
MarketAxess has enhanced its dealer-initiated protocols, EquiLend launches a market intelligence tool powered by AI, and the summer heat fuels fury over market data prices in this week’s news roundup.
Is exchange tech ready for 24/7 markets?
Overnight trading is coming to equities markets. Venues and vendors, both new and old, are preparing for it.
