Skip to main content
close search
site logo
Dive Brief

Chinese banking giant’s US arm hit by ransomware attack

The hack reportedly disrupted the trading of U.S. Treasuries. The Industrial and Commercial Bank of China Financial Services said it is investigating the attack and progressing recovery efforts.

Published Nov. 10, 2023
Anna Hrushka's headshot
Senior Reporter
Ransomware spelled out in a creative depiction.
Ransomware depicted among lines of code. Just_Super via Getty Images

Dive Brief:

  • A U.S. subsidiary of China’s largest bank was hit by a ransomware attack Wednesday that resulted in disruption to certain financial services systems, the bank announced Thursday.
  • The hack disrupted the trading of U.S. Treasuries, forcing the Industrial and Commercial Bank of China Financial Services to send required settlement details to certain parties by a messenger carrying a USB stick, according to Bloomberg.
  • The New York City-based firm said it reported the incident to law enforcement and successfully cleared U.S. Treasury trades executed Wednesday and repo financing trades done Thursday.

Dive Insight:

"Immediately upon discovering the incident, ICBC FS disconnected and isolated impacted systems to contain the incident,” the bank said in a statement. 

The firm, whose clients include hedge funds, broker-dealers and global banks, said it is investigating the attack and progressing recovery efforts.

“The business systems and office systems of the head office of ICBC and other domestic and foreign branches and subsidiaries within the group are normal,” China’s foreign ministry said Friday, according to CBS News

"As far as we know, ICBC has paid close attention to this matter, and has done a good job in emergency handling and supervision and communication, striving to minimize the impact of risks and losses," foreign ministry spokesperson Wang Wenbin said at a regular news briefing.

The attack used ransomware developed by Russian hacking group LockBit, Marcus Murray, the founder of Truesec, a cybersecurity company, told The Wall Street Journal on Friday. The attack was probably launched by an affiliate of LockBit, he told The Journal.

LockBit, a prolific ransomware group, claimed responsibility for the cyberattack on multinational aerospace company Boeing last month, according to Cybersecurity Dive.

“A boundary has been broken. We haven’t seen something like this involving a large bank before,” Murray told The Journal. “We’ve seen previous cyberattacks against big banks, but the hackers haven’t used ransomware. It’s not clear how this is going to impact banks, or the wider financial system.”

Filed Under: Commercial, Risk

Editors' picks

  • Consumer Financial Protection Bureau Director Rohit Chopra testifies before the Senate Banking, Housing and Urban Affairs Committee April 26, 2022 in Washington, DC.
    Image attribution tooltip
    Win McNamee via Getty Images
    Image attribution tooltip

    CFPB issues final rule on open banking

    Payment apps are included in the data-control rule, in a change from last year’s proposal. Banks and credit unions with less than $850 million in assets are exempt.

    By Dan Ennis • Oct. 22, 2024
  • Woman stands under TD Bank sign.
    Image attribution tooltip
    Drew Angerer via Getty Images
    Image attribution tooltip

    TD hit with asset cap, $3B in penalties over AML woes

    The bank will pay $1.8 billion to the Justice Department, $1.3 billion to FinCEN, and growth will be restricted in the bank’s U.S. retail unit.

    By Dan Ennis and Gabrielle Saulsbery • Oct. 10, 2024

Company Announcements

View all | Post a press release
Bank Midwest Partnership with Newgen Continues to Amplify its Digital Banking Capabilities
From Newgen Software
October 24, 2024
Zingly Announces a Proven, Safe-AI Solution for Banks and Financial Institutions to Drive Reve…
From Zingly.ai
October 28, 2024
Agent IQ and Narmi Announce Strategic Partnership to Improve Digital Banking Experiences
From Agent IQ
October 31, 2024
Congressman urges CFPB to support SoLo Funds’ community-focused lending model
From Solo Funds
October 30, 2024
Editors' picks
  • Consumer Financial Protection Bureau Director Rohit Chopra testifies before the Senate Banking, Housing and Urban Affairs Committee April 26, 2022 in Washington, DC.
    Image attribution tooltip
    Win McNamee via Getty Images
    Image attribution tooltip

    CFPB issues final rule on open banking

    Payment apps are included in the data-control rule, in a change from last year’s proposal. Banks and credit unions with less than $850 million in assets are exempt.

    By Dan Ennis • Oct. 22, 2024
  • Woman stands under TD Bank sign.
    Image attribution tooltip
    Drew Angerer via Getty Images
    Image attribution tooltip

    TD hit with asset cap, $3B in penalties over AML woes

    The bank will pay $1.8 billion to the Justice Department, $1.3 billion to FinCEN, and growth will be restricted in the bank’s U.S. retail unit.

    By Dan Ennis and Gabrielle Saulsbery • Oct. 10, 2024
Latest in Commercial
image/svg+xml
Industry Dive is an Informa business
© 2024 Industry Dive. All rights reserved. | View our other publications | Privacy policy | Terms of use | Take down policy.
Cookie Preferences / Do Not Sell