Categories: SecurityWorkspace

Hedge Fund Hit For Trade Details, Says BAE Systems

A US hedge fund was breached by hackers who stole trade secrets and interfered with its trading, according to security firm BAE Applied Systems, and observers have warned there may be plenty of other similar incidents.

The attackers installed malicious code on servers at one of the world’s leading finance companies, and slowed down its trading, while re-routing sensitive information to remote computers according to BAE, which told CNBC it had detected and fixed the problem – but only after the attack cost the un-named hedge fund “millions of dollars” over a period of months.

Hedge trimming

The attack disrupted the hedge fund’s trading and shared details of the trades themselves, according to Paul Henninger, global products director at BAE Systems Applied Intelligence (previously known as Detica). He described it as one of the most complex hits he had ever seen as the method would have allowed the attackers to benefit from advance warning of the victim’s trades.

The hedge fund – a BAE customer – has not been named, and it’s not known if the attack was reported to the Securities and Exchange Commission (SEC) or the FBI. However, the servers were apparently compromised in late 2013. BAE was called in and shut the attack down after eight weeks.

Security firms have lined up to describe other attacks, with Canadian eSentire telling Bloomberg of a hit which took $1.5 million from a hedge fund in two minutes, using three wire transfers. Again, the fund in question is not named, and no further details were given.

Such attacks normally use “phishing” emails which fool staff into clicking on unsafe links giving hackers access to their systems, from where they can gain access to the victim’s networks. A recent high-profile phishing attack at retailer Target exposed customers’ financial details and led to the exit of the company’s CEO and CTO.

How well do you know network security? Try our quiz and find out!

Peter Judge

Peter Judge has been involved with tech B2B publishing in the UK for many years, working at Ziff-Davis, ZDNet, IDG and Reed. His main interests are networking security, mobility and cloud

Recent Posts

Apple, Google Mobile Ecosystems Should Be Investigated, CMA Told

CMA receives 'provisional recommendation' from independent inquiry that Apple,Google mobile ecosystem needs investigation

2 days ago

Australia Rejects Elon Musk Claim About Social Media Ban For Under-16s

Government minister flatly rejects Elon Musk's “unsurprising” allegation that Australian government seeks control of Internet…

2 days ago

Northvolt Files For Bankruptcy Protection In US

Northvolt files for Chapter 11 bankruptcy protection in the United States, and CEO and co-founder…

2 days ago

UK’s CMA Readies Cloud Sector “Behavioural” Remedies – Report

Targetting AWS, Microsoft? British competition regulator soon to announce “behavioural” remedies for cloud sector

3 days ago

Former Policy Boss At X, Nick Pickles, Joins Sam Altman Venture

Move to Elon Musk rival. Former senior executive at X joins Sam Altman's venture formerly…

3 days ago

Bitcoin Rises Above $96,000 Amid Trump Optimism

Bitcoin price rises towards $100,000, amid investor optimism of friendlier US regulatory landscape under Donald…

3 days ago