View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
December 2, 2014

M&A deal information under hackers’ scanner

Hackers target passwords for board level executives.

By CBR Staff Writer

Over 100 companies, investment advisers and law companies have been reportedly targeted by cyber hackers, in a bid to seek market-moving information about deals, a new study from FireEye reveals.

The hacking group dubbed ‘FIN 4’ managed to get passwords for board level executives and corporate development teams through targeted emails with malicious links and downloads, as they are involved in negotiations for mergers and acquisitions (M&A).

FireEye threat intelligence VP Dan McWhorter said: "Advanced threat actors conducting attacks to play the stock market to their advantage has long been a worry but never truly seen in action.

"FIN4 is the first time we are seeing a group of very sophisticated attackers actually systematically acquire information that only has true value to a criminal when used in relation to the stock market."

According to the security firm, about five organisations for every deal have been hacked to develop a picture of the probability of a deal’s success.

Researchers at the security firm noted that the hacking group relies on highly-targeted social engineering tactics and deep subject-matter skills and delivers weaponised versions of legitimate corporate files.

Specifically, FireEye found that since at least mid-2013, FIN4 has made product development, M&A strategies, legal issues, and purchasing processes of companies its target data points.

Content from our partners
DTX Manchester welcomes leading tech talent from across the region and beyond
The hidden complexities of deploying AI in your business
When it comes to AI, remember not every problem is a nail

The report said: "While FIN4’s unique methodology of not using malware allows them to evade traditional detection and attribution, the report provides analysis of the social engineering and document weaponization that the group employs as identified through FireEye investigations and detections.

"With a strong command of English colloquialisms, regulatory and compliance standards, and industry knowledge, FireEye researchers believe FIN4 to be US-based or, possibly, Western European."

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how Progressive Media Investments may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.