Cyber Incident Victim: Australian Investment Exchange

In 2015, the Australian Securities & Investment Commission (ASIC) and the Australian Federal Police (AFP) jointly investigated suspicious trading activity involving compromised retail accounts at E*Trade, Commsec, and the Australian Investment Exchange. The probe focused on trades conducted the previous year through an overseas client account held with Morgan Stanley Australian Securities. Investigators determined that an unnamed Russian hacker had illegally accessed these accounts to manipulate 13 penny stocks listed on the Australian Securities Exchange. The attacker executed trades designed to artificially inflate share prices before liquidating positions to collect profits totaling $77,429 AUD. ASIC publicly described the scheme as market manipulation targeting low-value securities to exploit price movements. The intrusion specifically leveraged hacked client credentials to conduct unauthorized transactions without account holders' knowledge. No technical details about the initial compromise method were disclosed in regulatory statements.

Following the investigation, ASIC pursued legal action to recover illicit gains through the Australian court system. Authorities obtained a restraining order freezing the $77,429 AUD in profits generated from the stock manipulation scheme. The suspect remained unidentified at the time of reporting, with no public confirmation of arrests or extradition proceedings. ASIC's response emphasized detection through financial pattern analysis rather than immediate breach notification from affected brokerages. The incident exposed vulnerabilities in retail trading account security across multiple Australian financial platforms. Market impacts included distorted pricing for targeted penny stocks and temporary loss of investor funds from compromised accounts. Regulatory consequences centered on restraining illicit assets rather than disclosing systemic security improvements at implicated exchanges.