Advertisement
Canada markets closed

  • S&P/TSX

    21,639.10
    -59.01 (-0.27%)
     

  • S&P 500

    5,431.60
    -2.14 (-0.04%)
     

  • DOW

    38,589.16
    -57.94 (-0.15%)
     

  • CAD/USD

    0.7281
    +0.0001 (+0.02%)
     

  • CRUDE OIL

    78.49
    -0.13 (-0.17%)
     

  • Bitcoin CAD

    90,914.15
    +516.57 (+0.57%)
     

  • CMC Crypto 200

    1,403.34
    -14.54 (-1.03%)
     

  • GOLD FUTURES

    2,348.40
    +30.40 (+1.31%)
     

  • RUSSELL 2000

    2,006.16
    -32.75 (-1.61%)
     

  • 10-Yr Bond

    4.2130
    -0.0250 (-0.59%)
     

  • NASDAQ

    17,688.88
    +21.32 (+0.12%)
     

  • VOLATILITY

    12.66
    +0.72 (+6.03%)
     

  • FTSE

    8,146.86
    -16.81 (-0.21%)
     

  • NIKKEI 225

    38,814.56
    +94.09 (+0.24%)
     

  • CAD/EUR

    0.6798
    +0.0024 (+0.35%)
     

SEC Fines NYSE Owner $10 Million for Not Quickly Reporting Hack

Austin Weinstein
·1 min read

(Bloomberg) -- Intercontinental Exchange, Inc., which owns the New York Stock Exchange, agreed to pay $10 million to settle Securities and Exchange Commission allegations that the exchange giant failed to immediately tell the SEC about a hack of its systems in 2021.

Most Read from Bloomberg

The SEC said that in April 2021 ICE learned that its virtual private network had been hacked by a “threat actor.” ICE did not alert the legal and compliance staff at its subsidiaries, which include many of the world’s largest trading platforms, for several days, according to the SEC. The agency’s rules require ICE to immediately tell SEC staff about such incidents.

ADVERTISEMENT

“This settlement involves an unsuccessful attempt to access our network more than three years ago,” ICE, which did not admit to or deny the SEC’s findings, said in a statement. “The failed incursion had zero impact on market operations. At issue was the time frame for reporting this type of event under Regulation SCI,” the company added, referring to the SEC rule that covers such reporting.

After investigating the issue, ICE found that the intrusion was limited and did not pose a major risk, according to the SEC.

“When it comes to cybersecurity, especially events at critical market intermediaries, every second counts and four days can be an eternity,” SEC enforcement chief Gurbir Grewal said in a statement. “Today’s order and penalty not only reflect the seriousness of the respondents’ violations, but also that several of them have been the subject of a number of prior SEC enforcement actions.”

--With assistance from Katherine Doherty.

Most Read from Bloomberg Businessweek

©2024 Bloomberg L.P.