Cyber Incident Victim: Hong Kong Exchanges and Clearing Limited

The attackers used a Distributed Denial of Service (DDoS) attack to overwhelm the HKEX's systems, causing disruptions in trading and settlement services for several days. The incident highlights the vulnerability of financial institutions to cyber threats and the need for robust security measures to protect against such attacks.

In September 2019, Hong Kong Exchanges and Clearing Limited (HKEX) experienced a major cyber attack that disrupted trading and settlement services for several days. The attackers used an External Denial of Service (DDoS) technique to overwhelm HKEX's systems, causing widespread outages and delays in the exchange's operations.

The incident began on a Thursday evening when the HKEX's website was hacked, resulting in disruptions to trading and settlement services. The attackers used a Distributed Denial of Service (DDoS) technique to flood the HKEX's systems with traffic from multiple sources, overwhelming its infrastructure and causing system failures.

The DDoS attack was particularly sophisticated, using a complex network of compromised computers to amplify the attack traffic. The attackers were able to generate massive amounts of traffic that exceeded HKEX's capacity, resulting in prolonged disruptions to trading and settlement services.

HKEX quickly acknowledged the incident and took steps to mitigate the effects of the attack. However, it was unable to restore full functionality until several days later, causing significant inconvenience to market participants. The exchange also confirmed that no sensitive data or systems were compromised during the attack.

The cyber attack on HKEX highlights the vulnerability of financial institutions to cyber threats and the need for robust security measures to protect against such attacks. It is a sobering reminder of the potential consequences of a successful DDoS attack, which can have far-reaching impacts on market stability and investor confidence.

In response to the incident, HKEX has taken steps to enhance its cybersecurity defenses, including implementing additional security measures to prevent similar attacks in the future. The exchange also reassured clients that it is working closely with regulatory authorities to investigate the attack and bring those responsible to justice.