bodyType

customContents

entityId

entityUuid

articlePageQuery

filter

article

articleBaseAdvertisingInfoArticle

articleListArticle

articleSeoArticle

hooksArticleAcknowledgementGateOverlayArticle

hooksTrackPageViewArticle

hooksContentInterestArticle

articleLinkingDataContent

hooksAmpRedirectArticle

articleSchemaContent

liveArticle

advertZone

sentiment

contentLock

topics

types

sections

paywallTypes

createdDate

publishedDate

urlAlias

moreOnThisArticles

sponsorType

commentCount

authorLocations

authors

corrections

displaySlideShow

multimediaEmbed

printHeadline

seriesContainer

articleSpeeches

socialHeadline

headline

images

flag

firstTopic

glossary

flattenTypeIds

image

relatedLinks

relatedNewsletters

__typename

sponsor

pdfFiles

seriesReverseOrder

series

disableOffPlatformContent

published

updatedDate

summary

subHeadline

body

keywords

readingTime

customTimezone

liveContents

Enoch Yiu

Last week's cyber attacks against the Hong Kong stock exchange's disclosure website brought a wave of criticism from brokers about the bourse's internet security systems. But  brokers  would do well to look at their own system.
Brokers, legislators and government officials pressed the stock exchange for a report on what exactly happened last Wednesday when overseas hackers crashed the Hong Kong Stock Exchange regulatory disclosure website. 
The attacks came in the form of so-called distributed denial of service attacks, which prevent access to a website by overwhelming its capacity to handle traffic.
The hackers attacked again on Thursday and Friday, but were fended off by the exchange. No attacks occurred yesterday, but who knows when the hackers will return.
The incidents should sound alarm bells for all banks and brokers on the need to review security systems on their investor internet trading platforms,  which have become increasingly popular.
HKEx statistics show 185 brokers offered internet trading last year, up 76 per cent from 105 in 2006. 
About 26 per cent of retail stock trading last year was conducted through the internet, up from 13 per cent in 2006. The numbers would be much higher if institutional investor trading was included.
HKEx is in the process of a HK$2 billion upgrade to its systems and network security, but still could not prevent the attacks. Have brokers and bankers spent enough to safeguard their security systems?
Brokers worry that the hackers may come back with a new trick, such as installing fake announcements or altering corporate news on the HKEx website to create panic selling on which they could make a profit. In fact, the blockage of the HKEx website last week might be related to hackers trying to take advantage of some investors being unable to access company news.
That is why last Wednesday the HKEx suspended trading in seven companies with a combined market value of HK$1.5 trillion (including HSBC, Cathay Pacific Airways and the HKEx itself), a debt security and 419 warrants and derivatives linked to the suspended stocks.  
These companies issued results and price sensitive information during the website crash, and the bourse worried that small investors, who rely on reading company news on the HKEx website, might have been unable to access the information. Trading resumed on Thursday following the creation of a backup  website.  
The HKEx said on Thursday that it would expand its distribution channels for company information by using newspaper advertisements, emails and third-party portals. 
Without commenting on the exchange's suspension of the seven stocks, Secretary for Financial Services and the Treasury Chan Ka-keung  supported the HKEx in its efforts to increase channels to distribute news. This would help reduce the necessity of suspending stocks if cyber attackers crashed the disclosure website again.



Firmer yuan fuels Chinese share gains on bets Beijing will tolerate appreciation

HKEx hacking a lesson for brokers