Nasdaq hackers target service for corporate boards

Feb 06, 2011 By PETER SVENSSON , AP Technology Writer
The sign outside the NASDAQ Market site is seen in this Aug. 19, 2004 file photo taken in New York. The Wall Street Journal reported on its website late Friday Feb. 4, 2011 that federal investigators are trying to identify the hackers that penetrated the market's computer network multiple times during the past year. (AP Photo/Kathy Willens, File)

(AP) -- Hackers broke into a Nasdaq service that handles confidential communications for some 300 corporations, the company said Saturday - the latest vulnerability exposed in the computer systems Wall Street depends on.

The intrusions did not affect Nasdaq's systems and no customer data was compromised, OMX Group Inc. said. Nasdaq is the largest electronic securities trading market in the U.S., with more than 2,800 listed companies.

A federal official told The Associated Press that the broke into the service repeatedly over more than a year. Investigators are trying to identify the hackers, the official said. The motive is unknown. The official spoke on condition of anonymity because the inquiry by the FBI and Secret Service is continuing.

The targeted service, Directors Desk, helps companies share documents with directors between scheduled board meetings. It also allows online discussions and Web conferencing within a board. Since board directors have access to information at the highest level of a company, penetrating the service could be of great value for .

Nasdaq OMX spokesman Frank DeMaria said the Justice Department had requested that the company keep silent about the intrusion until at least Feb. 14. However, The Wall Street Journal reported the investigation on its website late Friday, prompting Nasdaq to issue a statement and notify its customers.

DeMaria said Nasdaq OMX detected "suspicious files" during a regular security scan on U.S. servers unrelated to its trading systems and determined that Directors Desk was potentially affected. It pulled in forensic firms and federal law enforcement for an investigation. They found no evidence that customer information was accessed by hackers.

Rich Mogull, an analyst and CEO with the security research firm Securosis, said Web-accessible services like Directors Desk are a prime target for hackers, and have sometimes been a back door for systems that aren't directly connected to the Web. The presence of files on the Directors Desk system and the claim that no customer information was compromised could indicate that hackers were able to get in but not complete their attack, he said.

Computer security experts have long warned that many companies aren't doing enough to protect sensitive data, and recent events have underlined the point. The secret-spilling organization WikiLeaks has published confidential documents from banks in Switzerland and Iceland and claims to have incriminating documents from a major U.S. bank, possibly Bank of America.

In 1999, hackers infiltrated the websites of Nasdaq and the American Stock Exchange leaving taunting messages, but Nasdaq officials said then that there was no evidence the break-ins affected financial data.

Nasdaq OMX CEO Bob Greifeld said in a statement that cyber attacks against corporations and government are constant and the company is vigilant in maintaining security.

"We continue to evaluate and enhance our advanced security controls to respond to the ever increasing global cyber threat and continue to devote extensive resources to further secure our systems," he said.

Some of the Wall Street's technological scares have been unrelated to hackers. In June 2009, a computer glitch knocked out trading in 242 stocks on the New York Stock Exchange for several hours.

More recently, high-speed trading software precipitated a "flash crash" on May 6. One trade worth $4.1 billion touched off a chain of events that ended with 30 stocks listed in the S&P 500 index falling at least 10 percent within five minutes. The drop briefly wiped out $1 trillion in market value as some stocks traded as low as a penny.

Explore further: UN moves to strengthen digital privacy (Update)

4.3 /5 (6 votes)
add to favorites email to friend print save as pdf

Related Stories

US largely ruling out NKorea in 2009 cyberattacks

Jul 03, 2010

(AP) -- U.S. officials have largely ruled out North Korea as the origin of a computer attack last July that took down U.S. and South Korean government websites, according to cybersecurity experts.

Disney's earnings leak sprung from Goofy mistake

Nov 24, 2010

(AP) -- The Walt Disney Co.'s early release of its earnings report this month came down to a Dumbo move: The company made the information accessible through an easy-to-guess Web address.

White House among targets of sweeping cyber attack

Jul 08, 2009

(AP) -- The powerful attack that overwhelmed computers at U.S. and South Korean government agencies for days was even broader than initially realized, also targeting the White House, the Pentagon and the ...

Tech Shares Rise, Offset Worries About Housing

Mar 27, 2007

U.S. technology stocks rose on March 26, pulled higher by positive broker comments on companies such as Dell, but renewed signs of weakness in the housing market snapped a five-day winning streak for the Dow.

Recommended for you

UN moves to strengthen digital privacy (Update)

Nov 25, 2014

The United Nations on Tuesday adopted a resolution on protecting digital privacy that for the first time urged governments to offer redress to citizens targeted by mass surveillance.

Spotify turns up volume as losses fall

Nov 25, 2014

The world's biggest music streaming service, Spotify, announced Tuesday its revenue grew by 74 percent in 2013 while net losses shrank by one third, in a year of spectacular expansion.

Virtual money and user's identity

Nov 25, 2014

Bitcoin is the new money: minted and exchanged on the Internet. Faster and cheaper than a bank, the service is attracting attention from all over the world. But a big question remains: are the transactions ...

User comments : 2

Adjust slider to filter visible comments by rank

Display comments: newest first

StarDust21
not rated yet Feb 07, 2011
see you on wikileaks in a few months?
sender
not rated yet Feb 07, 2011
Network centric war on boyos, recruit or die!

Please sign in to add a comment. Registration is free, and takes less than a minute. Read more

Click here to reset your password.
Sign in to get notified via email when new comments are made.