Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Hacking of NASDAQ

Posted by Unknown on from the tales-of-hacking-and-intrigue dept.

puddingebola (2036796) writes Businessweek has an account of the 2010 hacking of the NASDAQ exchange. From the article, "Intelligence and law enforcement agencies, under pressure to decipher a complex hack, struggled to provide an even moderately clear picture to policymakers. After months of work, there were still basic disagreements in different parts of government over who was behind the incident and why. 'We've seen a nation-state gain access to at least one of our stock exchanges, I'll put it that way, and it's not crystal clear what their final objective is,' says House Intelligence Committee Chairman Mike Rogers, a Republican from Michigan, who agreed to talk about the incident only in general terms because the details remain classified. 'The bad news of that equation is, I'm not sure you will really know until that final trigger is pulled. And you never want to get to that.'"

3 of 76 comments (clear)

  1. Security by BitcoinBenny · · Score: 5, Insightful

    The security of the stock exchanges is really pretty bad. Low latency access means no firewalls and few application level checks. For the longest time people were sending ethernet raw packets...There is a perverse incentive not to properly secure exchanges because security is slow.

  2. Re:The market is rigged already by GameboyRMH · · Score: 5, Insightful

    Exactly. Do your worst, black hats. The system's already rooted by Wall Street bankers.

    --
    "When information is power, privacy is freedom" - Jah-Wren Ryel
  3. Re:The market is rigged already by GameboyRMH · · Score: 5, Insightful

    That's not a perfect analogy, but it's not too far off.

    It's more like this. There's a classifieds forum which regular users can refresh once every 10 minutes. Special users with a paid subscription can refresh once per second.

    You post "Bicycle wanted, will pay up to $500" and someone else posts "Bicycle for sale, $400" then the speedy special user buys the bicycle for $400 and puts it up for sale for $500 before you or the seller can refresh (at best, when they're not doing even shadier things like spamming the forum with fake Wanted posts etc).

    Somehow this is supposed to produce value. I think it has a similar effect on the economy to either robbery or counterfeiting currency. I can see no way this produces any value.

    --
    "When information is power, privacy is freedom" - Jah-Wren Ryel