Close
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Applications
    • Applications
    • Cybersecurity
    • Networking

    Nasdaq Attackers Eavesdropped on Board Directors With Web Monitoring Tool

    By
    Fahmida Y. Rashid
    -
    October 21, 2011
    Share
    Facebook
    Twitter
    Linkedin

      The hackers who breached the Nasdaq stock exchange network last year had installed remote-monitoring software that allowed them to spy on corporate directors, according to Reuters.

      The unknown attackers were able to install the monitoring tool and steal confidential documents and communications of board directors on the compromised platform, Reuters reported Oct. 20.

      Investigators have evidence that the attackers installed monitoring software and spied on “scores” of directors who had logged on to directorsdesk.com, but did not know how long the software was running on the network before it was detected and removed last October.

      Nasdaq’s Director’s Desk, a Web-based application used by the boards of various companies that trade on the exchange to share financial information, was compromised in the fall of 2010, Nasdaq OMX, the shell company that owns the stock market, disclosed Feb 5. Nasdaq OMX said at the time that there was no evidence that customer information had been accessed and that the trading infrastructure and other systems remained unaffected.

      “It appears that vulnerabilities within the application were probably successfully exploited by remote attackers that allowed them to peruse information exchanges between various company directors,” Gunter Ollmann, vice president of research at Damballa, told eWEEK. There are several types of common attacks that exploit application vulnerabilities to give the intruders access to the database and files on the server, Ollmann said.

      The fact that the attackers had some sort of write capability on the affected system that allowed them to install software indicates this was a fairly sophisticated attack, Chris Wysopal, CTO of Veracode, told eWEEK. At least one board director was probably compromised to give the perpetrators access to the application before they uncovered the vulnerabilities, Wysopal speculated.

      There were a “few steps in the attack” before the software was installed, Wysopal said.

      Organizations have to ensure that there is extensive security testing in all phases of development, according to Wysopal. There should be thorough security review during development and dynamic analysis during functional testing to find and close Web vulnerabilities. Penetration testing should be done, but testing should be happening from the start, he said.

      Even if the application initially didn’t have any issues at launch, ongoing maintenance and new features can be unintentionally introduced at any time, Ollmann said.

      “Regular security assessments and penetration tests are standard requirements,” and automated tests and change control monitoring should be conducted daily, Ollmann said.

      Organizations also have to start thinking about protecting the browser, instead of just focusing on traditional endpoint protection, said Bill Morrow, executive chairman at Quarri Technologies. Confidential business information is increasingly being accessed with Web browsers, but organizations are not always making sure the browsers are up-to-date and secure.

      The United States National Security Agency had been assisting Nasdaq in its investigation. U.S. Army General Keith Alexander, head of the National Security Agency and U.S. Cyber Command, told a group of journalists at a conference in Baltimore that the NSA was working with Nasdaq to “identify the signature” of the attackers and to protect the network against further attacks. Alexander said all other details were classified.

      “Nation-states, non-nation-state actors and hacker groups are creating tools that are increasingly more persistent and threatening, and we have to be ready for that,” Alexander said at the meeting.

      The Nasdaq attackers were most likely after inside information they could use for stock trades that would allow them to reap large profits, according to Wysopal. However, there is “definitely a trend” of malicious perpetrators going after a centralized repository of information that they can use in later attacks, he said.

      Fahmida Y. Rashid
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.
      Get the Free Newsletter!
      Subscribe to Daily Tech Insider for top news, trends & analysis
      This email address is invalid.

      MOST POPULAR ARTICLES

      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Applications

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      IT Management

      Intuit’s Nhung Ho on AI for the...

      James Maguire - May 13, 2022 0
      I spoke with Nhung Ho, Vice President of AI at Intuit, about adoption of AI in the small and medium-sized business market, and how...
      Read more
      Applications

      Kyndryl’s Nicolas Sekkaki on Handling AI and...

      James Maguire - November 9, 2022 0
      I spoke with Nicolas Sekkaki, Group Practice Leader for Applications, Data and AI at Kyndryl, about how companies can boost both their AI and...
      Read more
      Cloud

      IGEL CEO Jed Ayres on Edge and...

      James Maguire - June 14, 2022 0
      I spoke with Jed Ayres, CEO of IGEL, about the endpoint sector, and an open source OS for the cloud; we also spoke about...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2022 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×