Current:Home > reviewsU.S. arm of China mega-lender ICBC hit by ransomware attack -Blueprint Money Mastery
U.S. arm of China mega-lender ICBC hit by ransomware attack
View
Date:2025-04-16 05:46:42
The U.S. arm of China's largest bank said Thursday that it was hit by a ransomware attack, forcing clients to reroute trades and disrupting the U.S. Treasury market.
Ransomware attacks typically access vulnerable computer systems and encrypt or steal data, before sending a ransom note demanding payment in exchange for decrypting the data or not releasing it publicly.
The Industrial and Commercial Bank of China Financial Services (ICBC FS) said Thursday it "experienced a ransomware attack that resulted in disruption to certain (financial services) systems."
"Immediately upon discovering the incident, ICBC FS disconnected and isolated impacted systems to contain the incident," the New York-based bank said, adding that it was investigating the attack and working on recovery.
ICBC FS said it had successfully cleared U.S. Treasury trades executed Wednesday and repurchasing (repo) financing trades Thursday.
Bloomberg reported that some trades handled by ICBC FS on Thursday were transported across Manhattan on a USB stick as messengers manually relayed required settlement details.
China's foreign ministry said Friday that "the business systems and office systems of the head office of ICBC and other domestic and foreign branches and subsidiaries within the group are normal."
"As far as we know, ICBC has paid close attention to this matter, and has done a good job in emergency handling and supervision and communication, striving to minimize the impact of risks and losses," foreign ministry spokesman Wang Wenbin said at a regular news briefing. "At present, the business systems and office systems of the head office of ICBC and other domestic and foreign branches and subsidiaries within the group are normal."
U.S. media reported that the hack was executed using software created by Lockbit, the Russian-speaking hacking group known for scrambling files on a host's computer and flashing up messages demanding cryptocurrency payment to resolve the issue.
U.S. aircraft manufacturer Boeing was hit with an attack from Lockbit last week.Last year, LockBit was "the most deployed ransomware variant across the world and continues to be prolific in 2023," according to the U.S. Cybersecurity and Infrastructure Security Agency.
The U.S. Justice Department said in May that LockBit ransomware had been used in more than 1,400 attacks globally. LockBit has targeted critical infrastructure and large industrial groups, with ransom demands ranging from EUR5 million to EUR70 million.
The group attacked Britain's Royal Mail in early January and a Canadian children's hospital in December.
veryGood! (5)
Related
- Apple iOS 18.2: What to know about top features, including Genmoji, AI updates
- April 8 total solar eclipse will be here before you know it. Don't wait to get your glasses.
- Biden administration restores threatened species protections dropped by Trump
- Sean Diddy Combs' Alleged Drug Mule Arrested at Airport Amid Home Raids
- This was the average Social Security benefit in 2004, and here's what it is now
- A look at where Caitlin Clark, Paige Bueckers and others are headed when season ends
- Kenan Thompson calls for 'accountability' after 'Quiet on Set' doc: 'Investigate more'
- Excavation at French hotel reveals a medieval castle with a moat, coins and jewelry
- Have Dry, Sensitive Skin? You Need To Add These Gentle Skincare Products to Your Routine
- Alex Rodriguez's bid to become majority owner of Timberwolves falls through. Here's why
Ranking
- Small twin
- Dashcam video shows deadly Texas school bus crash after cement truck veers into oncoming lane
- As Powerball nears $1 billion, could these winning numbers help step up your lottery game?
- Eva Mendes says she had 'non-verbal agreement' with Ryan Gosling to be a stay-at-home mom
- Are Instagram, Facebook and WhatsApp down? Meta says most issues resolved after outages
- Score 60% off Lounge Underwear and Bras, $234 Worth of Clinique Makeup for $52, and More Deals
- SportsCenter anchor John Anderson to leave ESPN this spring
- NTSB says police had 90 seconds to stop traffic, get people off Key Bridge before it collapsed
Recommendation
Federal Spending Freeze Could Have Widespread Impact on Environment, Emergency Management
Authorizing sports betting in Georgia may lack needed votes from lawmakers
Barges are bringing cranes to Baltimore to help remove bridge wreckage and open shipping route
Barges are bringing cranes to Baltimore to help remove bridge wreckage and open shipping route
Taylor Swift Eras Archive site launches on singer's 35th birthday. What is it?
Alex Rodriguez's bid to become majority owner of Timberwolves falls through. Here's why
Key findings from AP’s investigation into police force that isn’t supposed to be lethal
Democrat who campaigned on reproductive rights wins special election for Alabama state House seat