How secure is your brokerage against cyber attacks? A close look

The unlawful obtaining of customer information or the unauthorized gaining of access to online accounts is a very important modern criminal activity that should absolutely not be taken lightly, especially in the FX industry which not only conducts its entire, global business via the internet, but also is responsible for financial transactions and the safekeeping […]

How secure is your brokerage against cyber attacks?

The unlawful obtaining of customer information or the unauthorized gaining of access to online accounts is a very important modern criminal activity that should absolutely not be taken lightly, especially in the FX industry which not only conducts its entire, global business via the internet, but also is responsible for financial transactions and the safekeeping of client monies.

Cybersecurity, the terminology given to the protection of information systems from theft or damage to the hardware, the software, and to the information on them, as well as from disruption or misdirection of the services they provide, is paramount and therefore access to the right information from all parties is a given…. or is it?

Research by McAfee Labs, the internet security and anti-virus research division of Intel Security, has this week concluded that only 42% of cybersecurity professionals use shared threat intelligence, despite 97% of those who do use it having stated that it helps them provide a better counter-threat service and with 59% having stated that shared data is “very valuable” to their organization.

The FX industry is so multi-faceted that the need for cybersecurity exists in many specific areas such as the electric payment processing sector, the safeguarding of client funds in online trading accounts and the actual access to trading accounts themselves in order that trades can be opened and closed.

Last year, Tim Thompson, CEO of British payment payment service provider and risk management technology company NOIRE explained to Andrew Saks-McLeod that FX brokerage accounts are usually accessible online needing only a username and password in order to gain access to sensitive data and exposure to fraudulent withdrawals.

“It can start in a number of ways” explained Mr. Thompson. “These methods include fraudsters phishing customers details, through emails pretending to be from the broker and telephone calls, Trojan malware programs often downloaded for trading platforms which look legitimate but could be obtaining customers’ login details and passwords. Fraudsters do this on an industrial scale and gain access to many customer accounts across many businesses.”

Mr. Thompson explained that in many cases, fraudsters have been able to successfully make withdrawals from trading accounts, their requests being so authentic that they have been passed by even the most diligent of compliance departments. The ability to access accounts by phishing and sending in Trojan horse malware programs in order to ’emulate’ the real customer would be avoided with the right anti-fraud security systems.

In October last year, a series of connectivity outages began affecting internet ccess for hosted customers of MetaTrader 4 integration bridge provider oneZero Financial Systems, one of which was Australia’s IC Markets.

At that particular time, IC Markets, which uses oneZero to host its MetaTrader 4 retail FX trading environment, stated that it was targeted by a DDOS attack, which is an acronym for ‘distributed denial of service’. In this particular case, the attack functioned by bombarding the server with a high volume of messages in order to either slow down the server, or to prevent it functioning at all.

Some three years ago, Jeff Wilkins, Managing Director of Michigan-based ThinkLiquidity, a well recognized industry expert with regard to electronic risk management, explained to Andrew Saks-McLeod during a meeting in Cyprus that within networks used in the FX industry, points of presence, which are dedicated connectivity solutions between venues, trading companies and hosts, had been gaining popularity, and that distributed points of presence connectivity allows protection against denial of service attacks, confirming that ThinkLiquidity at that time always advised that this type of infrastructure is put in place.

Three years on, the institutional sector has in some form adopted such systems, venue-neutral Canadian infrastructure provider TMX Atrium put in place points of presence between Paris, London, Frankfurt and Moscow during 2013, however this venue-based connectivity has not filtered its way into the OTC retail sector on a widespread scale, a likely reason being the cost of implementing dedicated infrastructure to many smaller retail firms being high, especially when margins are low once spread, IB commission, client acquisition and retention costs and operating expenses are taken into account.

Some of the more interesting findings of the survey by McAfee Labs is that when asked what posed a barrier to companies from sharing threat information, some 54% cited company policies, while 24% cited regulations within their industry, and 24% said lack of knowledge on how the information would be used.

Regulatory aspects are indeed an interesting perspective, as the regulatory authorities in some of the more well recognized jurisdictions for electronic trading such as Australia and North America have become very much involved in using high tech methods of conducting their oversight.

The National Futures Association (NFA) in America uses a system within which all firms must make daily reports which are stored on file. It would be interesting to understand how the NFA would regard the sharing of information between companies before uploading it to the NFA reporting system, or if the NFA could make certain information sharable to bona fide compliance departments as part of a security effort.

Australia’s ASIC uses a surveillance system which monitors the activities of all companies on a real-time basis, therefore would be able to easily detect any sharing of confidential information between companies, which it may frown upon due to inside information getting into the hands of competitors despite the usefulness in countering cyber attacks. The Australian authorities have a very strict stance on not only insider dealing, but the sharing of confidential information between companies could be construed as market abuse by ASIC.

The McAfee report concluded that cyberthreats are on the rise, with new ransomware up 26% in the last quarter of 2015 compared to the third quarter of the year.

“Our report highlights that cyber threat intelligence (CTI) must overcome the barriers of organisational policies, regulatory restrictions, liability risks, and a lack of implementation knowledge before its potential can be fully realised” said Raj Samani, Head of Technology for the EMEA region at Intel Security.

Read this next

Digital Assets enables Shopify merchants to accept crypto payments has integrated with Canadian e-commerce giant Shopify so global merchants can accept crypto payments and save on processing fees through cash-final settlements.

Institutional FX

FX volume drops 13pct at CLS Group in April 2022

FX settlement specialist CLS Group today reported that the executed volumes of currency trading on its platforms were notably down in April.

Crypto Insider, Opinion

Regulation: The Gold-Standard for Crypto-Assets

When the US supervisory authority SEC allowed an investment product referencing Bitcoin futures to be traded for the first time last October, this was widely perceived as a signal that cryptocurrencies had finally become established as an asset class.

Executive Moves

Solid hires FX industry veteran Darren Barker for multi-bank ECN’s business development

His curriculum vitae includes former roles at Cantor Fitzgerald, Sucden Financial, R.J. O’Brien, Jefferies, Natixis, Unicredit, J.P. Morgan, Raiffeisen, RBS International, UBS, Deutsche Bank, and Citi. 

Inside View

Mihails Safro, xpate CEO: Tips sellers need to know to overcome compliance obstacles

The unprecedented growth of e-commerce changed shopping dramatically last year. Many sellers suddenly faced a rapidly growing number of customers who had to stay home during the lockdown. When some clients adopted Netflix and Spotify as part of a daily routine, others ventured into online business. Robinhood alone saw a whopping 6 million rise in user numbers in 2 months. 

Institutional FX

BMLL delivers Level 3 data to Kepler Cheuvreux for order book analytics and algo performance

The solution covers more than 6.5 years of harmonised historical data from 65 venues and combines it with easy to use APIs and analytics libraries in a secure cloud environment. 

Digital Assets

Crypto Is An Invaluable Tool In The Fight Against Financial Oppression  

Crypto has proven itself to be much more than just a hot investment. Indeed, some say it’s poised to play a critical role in the future of finance

Executive Moves

Parameta appoints Head of Benchmark and Indices with a focus on ESG and rates

The firm said building out its benchmarks & indices offering will now be a core priority, with a particular focus on the ESG and rates space.

Digital Assets

WunderTrading brings automated crypto trading to United States

“Among developed countries, Americans are the heaviest users of cryptocurrencies, with 13% having invested in cryptocurrencies over the past year.”