Wall Street & Technology: Blog: Top Level Financial Execs Targets of Cyber Attack

Top Level Financial Execs Targets of Cyber Attack

In the last 24 hours, there has been a spike in malicious attacks against banks, and in particular against C-level executives at financial institutions around the world.

MessageLabs said that since 4.55 pm (GMT) on Monday, its spam filters have intercepted over 450 malicious emails containing attachments and purportedly coming from the U.S. Department of Justice and targeted specifically at CEOs, CIOs, CFOs and vice-presidents at financial institutions.

enlarge

Recipients of the malicious email are enticed to click on an attachment, which then downloads malware onto their computer.

By targeting C-level executives and downloading malware onto their computers, criminals might hope to obtain useful inside information about upcoming mergers and acquisitions, says Paul Wood, senior analyst at MessageLabs.

Then again, says Wood, they might be targeting these executives simply because they are perhaps the easiest to get information about, since news stories generally track the moves of top executives from one company to another.

"Criminals can then supplement their research from social networking sites," Wood adds, pointing to sites such as Linkedin and Plaxo which business executives routinely use to post professional information about themselves.

Of course, many busy C-level executives don't actually open emails themselves, but forward them to their assistant – who may or may not be more vigilant about malicious email.

Other C-level executives might simply forward emails to heads of departments or other employees in the company. But employees may still try to follow through and click on a malicious attachment, since they will recognize that the email comes from inside the company -- perhaps from their boss.

News of the attack comes just days after a new report revealed that 60% of phishing attacks against global banking brands are targeted against U.S. institutions.

MessageLabs points out that Monday's attack is unusual because the emails state the full name of the recipient and their company, in the subject line.

The attack is therefore more likely to succeed than when criminals randomly spam hundreds or thousands of employees.

The attack also marks a return to the use by criminals of malicious attachments, as opposed to malicious links, which had recently become more common, MessageLabs says.

Meanwhile, the number of cyber attacks is continuing to rise rapidly. "Tool kits have made it a lot easier for people to conduct these attacks. Previously criminals had to be quite technically sophisticated. Now they can just get a tool kit which makes it all very simple," Wood explains.

Posted by Melanie Rodier at 02:58 PM

This is a public forum. CMP Media and its affiliates are not responsible for and do not control what is posted herein. CMP Media makes no warranties or guarantees concerning any advice dispensed by its staff members or readers.

Community standards in this comment area do not permit hate language, excessive profanity, or other patently offensive language. Please be aware that all information posted to this comment area becomes the property of CMP Media LLC and may be edited and republished in print or electronic format as outlined in CMP Media's Terms of Service.

Important Note: This comment area is NOT intended for commercial messages or solicitations of business.

Greg MacSweeny Columns

Greg MacSweeney
A "Slowdown in the Decision Making Process" for Tech Spending
The continuing effects of ongoing economic turmoil have begun to drastically change the wa...

Polish Central Securities Depository Chooses Microsoft BizTalk Server as Financial Messaging Platform

Citi Announces Another Execution to Custody Product Client Win

Pamplona Capital Management Selects Calypso SaaS for New Credit Fund

Larry Tabb Columns

Larry Tabb
Why are we still waiting for the $700 billion bailout?
As debate over the $700 billion bailout continues, Larry Tabb, CEO of TABB Group, comments...

Now Is the Time for Firms to Position Themselves for the End of the Economic Downturn

Clearing and Settlement Top-of-Mind for Front-Office Execs

Risk Management IT Comes to the Forefront in the Wake of Subprime Credit Crisis

CHECK THIS OUT

Novell Real Time Linux Webcast Series
In order to succeed, companies must be able to respond quickly, deliver superior value and quality of service, and carefully manage their costs. In this series of brief webcasts, you will learn how SUSE Linux Enterprise Real Time from Novell enables organizations to respond quicker by delivering low latencies, deliver increased value with fast response times, and better manage costs.

Events

Live Events:
Bank Systems & Technology's 3rd Annual Executive Summit
October 19-22, 2008

Avoiding the Mobile Blind Spot: Enhanced Security for the Wireless Workplace
October 28, 2008

Buy-Side Trading Summit 2008
November 16-18, 2008

Accelerating Wall Street 2009
March 18, 2009

Web Events:
Good to the Last Watt: Improving Performance and Efficiency in Wall Street’s Data Centers
October 15, 2008

Rising to the Challenge of Operational Governance
October 22, 2008

Marketplace

Career Center

Ready to take that job and shove it?

Most Recent Job Posts:

* Rho Trading seeking Systems Support in Chicago, IL
* Mentor Graphics seeking Sr. Director of Sales in San Jose, CA
* Capital Group seeking Accounting Manager in Norfolk, VA
* UC Berkeley seeking Helpdesk Team Lead in Berkeley, CA
* Beyond.com seeking Affiliate Program Manager in King Of Prussia, PA

For more tech jobs in the industry, visit Wall Street & Technology's Career Portal.