After Reported Hacking, Nasdaq Found ‘Suspicious’ Files on Servers

FBI, Nasdaq proceed withInvestigation

More On Legal & Compliance

from The Advisor's Professional Library
  • Scope of the Fiduciary Duty Owed by Investment Advisors A fiduciary obligation goes beyond the suitability standard typically owed by registered representatives of broker-dealer firms to clients. The relationship is built on the premise that the advisor will always do the right thing for the person or entity receiving advice.
  • Client Commission Practices and Soft Dollars RIAs should always evaluate whether the products and services they receive from broker-dealers are appropriate. The SEC suggested that an RIA’s failure to stay within the scope of the Section 28(e) safe harbor may violate the advisor’s fiduciary duty to clients, so RIAs must evaluate their soft dollar relationships on a regular basis to ensure they are disclosed properly and that they do not negatively impact the best execution of clients’ transactions.

After The Wall Street Journal reported late Friday that Nasdaq had been hacked, the exchange disclosed Saturday that it had found “suspicious files” on its servers, and that hackers could have affected its applications. The files have since been deleted.

Reuters reported that Nasdaq OMX did not give details on the hackers or on the object of their activities, saying only that there was no evidence that customer information was accessed or acquired, or that any of the trading platforms were accessed.

Adena Friedman, Nasdaq OMX’s chief financial officer, and Vince Palmiere, vice president of investor relations, said in a statement, "We continue to evaluate and enhance our advanced security controls to respond to the ever increasing global cyber threat and continue to devote extensive resources to further secure our systems.” They added, “Cyber attacks against corporations and government occur constantly.”

Nasdaq OMX also did not say when the attack took place, or when the files were found. The FBI and outside forensic companies helped to conduct the investigation, it said, and a spokesman was quoted in the report saying, "It's nearly impossible to determine where it comes from, but the authorities are tracking it." The company had not intended to notify customers until at least Feb.14, in order to comply with a U.S. Justice Department request to aid its investigation.

Concerns about the stability of the marketplace and data security and exposure have grown since the "flash crash" in May, when within 20 minutes the market crashed and then recovered. Further adding to concerns is the fact that last week two key Nasdaq indices had their prices locked for an hour thanks to a computer problem. Exchange spokesman Frank DeMaria denied that hackers had anything to do with what happened.

Reprints Discuss this story
This is where the comments go.