Although NASDAQ officials say Thursday’s shutdown of the exchange was not the result of a hacker attack, security analysts say it could have been. Byron Acohido of USA Today spoke with Avivah Litan, a banking security analyst with Gartner.
DDoS attacks rock U.S. financial institutions
According to Litan, the shutdown was very similar to the denial of service hacker attacks which have plagued U.S. financial institutions for quite some time. The websites of several of the nation’s largest banks, including Wells Fargo & Co. (NYSE:WFC) and others, have been shut down temporarily due to the hacker attacks. The attacks have happened multiple times on the same big banks.
Chilton Capital's REIT Composite was up 6.1% last month, compared to the MSCI U.S. REIT Index, which gained 4.4%. Year to date, Chilton is up 6.3% net and 6.5% gross, compared to the index's 8.8% return. The firm met virtually with almost 40 real estate investment trusts last month and released the highlights of those Read More
Cyber Fighters of Izz ad-Din al-Qassam, a hacking group from Iran, has claimed credit for those attacks, although so far no such claim has been made for Thursday’s shutdown of the NASDAQ stock exchange. Litan notes that the NASDAQ would be an attractive target for the group because it is extremely visible. The group’s attacks are generally aimed at making a statement by causing a very public disruption.
NASDAQ outage had strange timing?
Kaspersky Lab senior researcher Roel Schouwenberg told USA Today that the timing of the NASDAQ outage was interesting because it came within 48 hours of a major glitch reported at Goldman Sachs. In that glitch, the firm set wrong pricing limits and selling algorithms which affected contracts for major public companies. The result was options being sold for a song.
According to Schouwenberg, the NASDAQ outage and the Goldman Sachs glitch could both have been the results of hacking attacks. The researcher notes that the motive could either have been political, like with the Cyber Fighters, or financial, like a recent digital heist which emptied numerous accounts of a major bank recently. In that heist, the cyber criminals launched a DDoS attack on the bank to distract its IT crew and then started emptying bank accounts using an employee’s account.