-
Messi v Salah in World Cup last-16 showdown
-
Democrats push key US Senate candidate to quit over sex assault claim
-
Death toll from China storms rises to 15, hundreds injured
-
As South Korean Buddhism woos Gen Z, how hip is too hip?
-
Belgium boosted by Balogun furore: Tielemans
-
'Disappointed' Pochettino says Balogun row no excuse for US World Cup exit
-
Samsung expects 1,800% operating profit leap on AI boom
-
Seoul dives on mixed day in Asia as Samsung fails to ease tech woes
-
Belgium thrash USA to end World Cup dream and set up Spain showdown
-
Belgium dump US out of World Cup after Balogun row
-
France's Le Pen faces pivotal ruling in race for president
-
How US is using cash and threats to dump migrants in Africa
-
NATO allies seek to win over Trump after Iran ire
-
Democrat in key US Senate race denies sex assault claim
-
US leads international concern after China test-fires missile into Pacific
-
Samsung expects 1,800% leap in quarterly operating profit on AI boom
-
Close to tears and on his own as Ronaldo's World Cup dream ends
-
Russian strikes kill at least 26 in Kyiv region on eve of NATO summit
-
Argentina's gruelling World Cup schedule a concern for Scaloni
-
Ronaldo 'won't make rash decisions' following last World Cup game
-
Race to recover bodies ahead of Venezuela quake cleanup
-
Paraguay govt slams lawmaker for racially abusing France's Mbappe
-
Egypt coach Hassan says Palestinian suffering 'a shame on the world'
-
US embraces Balogun World Cup reprieve as world seethes
-
NBA Kings waive six-time All-Star forward DeRozan
-
Spain win it late to give Ronaldo bitter end to World Cup career
-
Greaves and Hope centuries usher West Indies towards safety
-
Spain edge Portugal to end Ronaldo World Cup dream, US eye quarters
-
'I celebrated in bed' -- Norway's Solbakken stays grounded after beating Brazil
-
Spain win it late to bid farewell to Ronaldo at World Cup
-
Canada chooses Germany's TKMS to build new fleet of submarines
-
Trump's fireworks made Washington world's most polluted city
-
Mbappe condemns racist abuse by Paraguayan senator after World Cup clash
-
Stock markets meander as US tech stocks climb
-
FIFA chief forced to defend Balogun World Cup reprieve
-
Britain's Fery stuns Dimitrov, Paolini into Wimbledon quarters
-
Antetokounmpo says goodbye to Milwaukee in video
-
Russian strikes kill 24 in Kyiv region on eve of NATO summit
-
Fairytale Fery sinks Dimitrov to make Grand Slam history at Wimbledon
-
Trump touts latest White House renovation: a new helipad
-
Canadian Artemis II crew member to retire from space agency
-
Fritz powers past Bublik, into Wimbledon last eight again
-
Prince Harry arrives in UK amid security spat
-
Ovechkin won't say next NHL season will be his last
-
'Agony' in Cuba amid third nationwide blackout in six months
-
Djokovic, Sinner aim to book Wimbledon blockbuster
-
For Trump's World Cup, 'America First' collides with world's game
-
Record fireworks display choked Washington in toxic smoke
-
England's World Cup campaign takes flight with Mexico win
-
Macron in Syria on first post-Assad visit by West European head of state
US arm of China mega-lender ICBC hit by ransomware attack
The US arm of China's largest bank said it was hit by a ransomware attack, forcing clients to reroute trades and disrupting the US Treasury market.
Ransomware attacks typically access vulnerable computer systems and encrypt or steal data, before sending a ransom note demanding payment in exchange for decrypting the data or not releasing it publicly.
The Industrial and Commercial Bank of China Financial Services (ICBC FS) said Thursday it "experienced a ransomware attack that resulted in disruption to certain (financial services) systems."
"Immediately upon discovering the incident, ICBC FS disconnected and isolated impacted systems to contain the incident," the New York-based bank said, adding that it was investigating the attack and working on recovery.
ICBC FS said it had successfully cleared US Treasury trades executed Wednesday and repurchasing (repo) financing trades Thursday.
Slack demand for $24 billion in 30-year US Treasury bonds that were auctioned Thursday came as a surprise to some analysts.
This sale "attracted very poor demand, one of the weakest I can remember," Karl Haeling of the bank LBBW told AFP.
But demand at this sale "might not have been as bad as advertised," said Patrick O'Hare of Briefing.com.
"That's because subsequent reports have indicated that the US financial services division of China's Industrial and Commercial Bank was hit by a ransomware cyberattack yesterday that disrupted trades in the Treasury market."
Richard Flax, chief investment officer at Moneyfarm, put it this way: "Finally, a large Chinese bank suffered a cyber-attack that impacted its ability to trade in US Treasuries. Some commentators argue that that, rather than weak demand, was behind the relatively poor US government bond auction."
Bloomberg reported that some trades handled by ICBC FS on Thursday were transported across Manhattan on a USB stick as messengers manually relayed required settlement details.
China's foreign ministry said Friday that "the business systems and office systems of the head office of ICBC and other domestic and foreign branches and subsidiaries within the group are normal."
"As far as we know, ICBC has paid close attention to this matter, and has done a good job in emergency handling and supervision and communication, striving to minimize the impact of risks and losses," foreign ministry spokesman Wang Wenbin said at a regular news briefing.
"At present, the business systems and office systems of the head office of ICBC and other domestic and foreign branches and subsidiaries within the group are normal."
US media reported that the hack was executed using software created by Lockbit, the Russian-speaking hacking group known for scrambling files on a host's computer and flashing up messages demanding cryptocurrency payment to resolve the issue.
US aircraft manufacturer Boeing was hit with an attack from Lockbit last week.
Last year, LockBit was "the most deployed ransomware variant across the world and continues to be prolific in 2023," according to the US Cybersecurity and Infrastructure Security Agency.
The US Justice Department said in May that LockBit ransomware had been used in more than 1,400 attacks globally.
LockBit has targeted critical infrastructure and large industrial groups, with ransom demands ranging from €5 million to €70 million.
The group attacked Britain's Royal Mail in early January and a Canadian children's hospital in December.
G.Haefliger--VB