recommended reading

Hackers Breached a Major Hedge Fund to Steal Information on Trades

voyager624/Shutterstock.com

In 2013, the servers of a large and powerful hedge fund became the target of hackers. The culprits installed malware, bringing the firm's high speed trading to a halt, and redirecting trade information to the hackers' machines. 

While BAE Systems Applied Intelligence declined to provide CNBC the name of the hedge fund when they revealed details of the hack on Thursday, this is a worst-case scenario for any large firm. While most corporate hacks go directly for credit card information or personal data (in some cases, pizza topping preferences) this hack aimed for trade details. By stealing trade information, the fund's trading strategy was jeopardized.

Paul Henninger, global product director at BAE Systems Applied Intelligence, told CNBC this was one of the most complex hacks he has seen in the realm of data extraction. "It's pretty amazing. The level of business sophistication involved as opposed to technical sophistication involved was something we had not seen before."

These hackers possessed two kinds of evil genius: the ability to break into a trading system, and knowing how to use the information they found for their own high-speed trading. Henninger has also seen this two-prong strategy used by hackers attacking insurance companies. They would hack into the system, create fake policies, then file claims against them for profit. 

For a hedge fund, this undermines the trust of the clients: "It often takes a while for firms to get comfortable with the idea of exposing what is in effect their dirty laundry to a law enforcement investigation," Henninger said. "You can imagine the impact potentially on investor confidence." In the case of this hedge fund, strategies were lost to hackers and the firm lost several million dollars over the course of several months. 

While BEA was able to determine the hack was going on and remove the malicious software, the SEC and FBI can also get involved. Henninger was unsure if the hedge fund had reported the attack to these authorities, and the authorities declined to comment. 

(Image via voyager624/Shutterstock.com)

Threatwatch Alert

Thousands of cyber attacks occur each day

See the latest threats

JOIN THE DISCUSSION

Close [ x ] More from Nextgov
 
 

Thank you for subscribing to newsletters from Nextgov.com.
We think these reports might interest you:

  • It’s Time for the Federal Government to Embrace Wireless and Mobility

    The United States has turned a corner on the adoption of mobile phones, tablets and other smart devices, outpacing traditional desktop and laptop sales by a wide margin. This issue brief discusses the state of wireless and mobility in federal government and outlines why now is the time to embrace these technologies in government.

    Download
  • Featured Content from RSA Conference: Dissed by NIST

    Learn more about the latest draft of the U.S. National Institute of Standards and Technology guidance document on authentication and lifecycle management.

    Download
  • A New Security Architecture for Federal Networks

    Federal government networks are under constant attack, and the number of those attacks is increasing. This issue brief discusses today's threats and a new model for the future.

    Download
  • Going Agile:Revolutionizing Federal Digital Services Delivery

    Here’s one indication that times have changed: Harriet Tubman is going to be the next face of the twenty dollar bill. Another sign of change? The way in which the federal government arrived at that decision.

    Download
  • Software-Defined Networking

    So many demands are being placed on federal information technology networks, which must handle vast amounts of data, accommodate voice and video, and cope with a multitude of highly connected devices while keeping government information secure from cyber threats. This issue brief discusses the state of SDN in the federal government and the path forward.

    Download
  • The New IP: Moving Government Agencies Toward the Network of The Future

    Federal IT managers are looking to modernize legacy network infrastructures that are taxed by growing demands from mobile devices, video, vast amounts of data, and more. This issue brief discusses the federal government network landscape, as well as market, financial force drivers for network modernization.

    Download

When you download a report, your information may be shared with the underwriters of that document.