Wall Street batters defenses in make-believe cybercrisis

Wall Street played its own version of war games on Thursday, testing its defenses against simulated cyberattacks bent on taking down U.S. stock exchanges.

A total of 500 people took part in the exercise, called Quantum Dawn 2, in offices across 50 financial institutions and government agencies.

"The exercise was completed successfully with robust engagement from all participants," the Securities Industry and Financial Markets Association (SIFMA) said in a statement.

Participants included banks, insurance companies, brokers, hedge funds and exchanges. The Department of Homeland Security (DHS), the Treasury Department, the Securities and Exchange Commission (SEC) and the Federal Bureau of Investigation (FBI) also participated.

At stake is the preparedness of Wall Street to fend off cyberattackers hoping to disrupt the nation's economy by disrupting U.S. markets. The exercise tested the players' crisis response plans and mitigation techniques, as well as electronic and telephone communications between institutions and coordination with government agencies.

Experts have said that the ability of institutions to share information during a cyber-crisis with each other and the government is key to winning an electronic assault.

"Having that human network practiced and exercised in any type of disaster simulation is critical," said Rich Bolstridge, chief strategist for financial services at Akamai Technologies. Akamai, which did not participate in the tests, provides security services to many financial institutions.

No production systems were used in the exercises. Instead, separate software simulated three major attacks that attempted over a "multi-day period" to take down stock markets.

[Also see: NIST closer to critical infrastructure cybersecurity framework]

Further attack details were not disclosed. SIFMA plans to release next month a report that will include recommendations on improving Wall Street's response to a cyber-crisis.

Financial institutions are sure to find holes in their defenses as a result of the tests, which supporters say is a good reason for having these types of simulations regularly.

"Cybersecurity as a whole is an arms race," Bolstridge said. "The attackers are constantly evolving their techniques, so the defenses have to be [continuously] raised, coordinated and put in place."

Where the first Quantum Dawn exercises in 2011 had all participants in one conference room, the latest has all the players in their own offices, which forces them to use real forms of communications, such as phones, email and instant messaging.

Since last September, Wall Street has been fending off several waves of distributed denial of service attacks from a self-proclaimed Islamic hactivist group that government officials believe originates from Iran. While the attacks have failed to cause major disruptions, they have forced banks to spend more on their defenses and to share information for their collective good, experts say.

Normally hesitant to provide data to rivals, the financial institutions have come to the conclusion the damage from a successful cyberattack is greater than competitive advantage.

Read more about emergency preparedness in CSOonline's Emergency Preparedness section.

Join the CSO newsletter!

Error: Please check your email address.

Tags Business Continuity | Emergency Preparednessdisaster recoveryapplicationsQuantum Dawn 2CyberattacksoftwareBusiness Continuityfbiwall streetDepartment of Homeland Security

More about Akamai TechnologiesAkamai TechnologiesFBIFederal Bureau of InvestigationQuantumSECSecurities and Exchange CommissionWall Street

Show Comments

Featured Whitepapers

Editor's Recommendations

Solution Centres

Stories by Antone Gonsalves

Latest Videos

  • 150x50

    CSO Webinar: The Human Factor - Your people are your biggest security weakness

    ​Speakers: David Lacey, Researcher and former CISO Royal Mail David Turner - Global Risk Management Expert Mark Guntrip - Group Manager, Email Protection, Proofpoint

    Play Video

  • 150x50

    CSO Webinar: Current ransomware defences are failing – but machine learning can drive a more proactive solution

    Speakers • Ty Miller, Director, Threat Intelligence • Mark Gregory, Leader, Network Engineering Research Group, RMIT • Jeff Lanza, Retired FBI Agent (USA) • Andy Solterbeck, VP Asia Pacific, Cylance • David Braue, CSO MC/Moderator What to expect: ​Hear from industry experts on the local and global ransomware threat landscape. Explore a new approach to dealing with ransomware using machine-learning techniques and by thinking about the problem in a fundamentally different way. Apply techniques for gathering insight into ransomware behaviour and find out what elements must go into a truly effective ransomware defence. Get a first-hand look at how ransomware actually works in practice, and how machine-learning techniques can pick up on its activities long before your employees do.

    Play Video

  • 150x50

    CSO Webinar: Get real about metadata to avoid a false sense of security

    Speakers: • Anthony Caruana – CSO MC and moderator • Ian Farquhar, Worldwide Virtual Security Team Lead, Gigamon • John Lindsay, Former CTO, iiNet • Skeeve Stevens, Futurist, Future Sumo • David Vaile - Vice chair of APF, Co-Convenor of the Cyberspace Law And Policy Community, UNSW Law Faculty This webinar covers: - A 101 on metadata - what it is and how to use it - Insight into a typical attack, what happens and what we would find when looking into the metadata - How to collect metadata, use this to detect attacks and get greater insight into how you can use this to protect your organisation - Learn how much raw data and metadata to retain and how long for - Get a reality check on how you're using your metadata and if this is enough to secure your organisation

    Play Video

  • 150x50

    CSO Webinar: How banking trojans work and how you can stop them

    CSO Webinar: How banking trojans work and how you can stop them Featuring: • John Baird, Director of Global Technology Production, Deutsche Bank • Samantha Macleod, GM Cyber Security, ME Bank • Sherrod DeGrippo, Director of Emerging Threats, Proofpoint (USA)

    Play Video

  • 150x50

    IDG Live Webinar:The right collaboration strategy will help your business take flight

    Speakers - Mike Harris, Engineering Services Manager, Jetstar - Christopher Johnson, IT Director APAC, 20th Century Fox - Brent Maxwell, Director of Information Systems, THE ICONIC - IDG MC/Moderator Anthony Caruana

    Play Video

More videos

Blog Posts