Cyber Incident Victim: SS&C Technologies
Date:
Mar 2016
Location:
United States of America
Summary
A financial services technology firm fell victim to a China-based hacking scheme involving fraudulent emails that tricked staff into transferring client funds, resulting in the loss of nearly $6 million. The breach led a commodities fund to temporarily suspend operations after its assets were misappropriated through the compromised administrator. According to legal filings, the firm allegedly disregarded established security protocols, with employees authorizing substantial wire transfers within minutes of receiving suspicious requests—including one instance where a $3 million transfer was initiated following an email containing only casual small talk. The lawsuit accused the administrator of failing to exercise basic care in addressing evident cybersecurity threats during the incident.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
In March 2016, SS&C Technologies, a financial services software firm with a $6 billion market capitalization, experienced a cybersecurity incident involving China-based hackers who used fraudulent emails to deceive company staff. The attackers employed socially engineered emails described as "sloppy" and lacking substantive content, including one $3 million wire transfer request that stated only: "How was your weekend? Let's round business up today." According to legal filings, SS&C staff failed to follow established protocols, approving multiple fraudulent wire transfers for Tillage Commodities Fund within minutes of receiving these suspicious requests. This resulted in the theft of nearly $6 million from Tillage's accounts during March 2016. The breach directly impacted Tillage's operations, forcing the commodities investment fund to temporarily suspend business activities due to the financial losses.
The incident led Tillage Commodities Fund to file a lawsuit against SS&C Technologies on September 16, 2016, alleging negligence in handling cybersecurity threats. The complaint specifically accused SS&C of ignoring its own security procedures and failing to exercise basic care when processing wire transfers, despite what the plaintiffs characterized as "known and obvious" risks. The lawsuit highlighted the speed with which staff authorized transactions, noting transfers were often approved mere minutes after receiving fraudulent instructions. While the breach occurred months prior, the legal action brought public attention to the incident, coinciding with SS&C's acquisition of Wells Fargo's global fund services business earlier that week. SS&C representatives were unavailable for comment when the lawsuit became public, and no additional corporate response or remediation efforts were documented in the available source material. The financial impact remained isolated to Tillage's losses, with no disclosed evidence suggesting broader compromise of SS&C systems or additional affected clients.