Connect with us

Published

1 year ago

on

A pedestrian walks pass a branch of Industrial & Commercial Bank of China (ICBC) in Fuzhou, Fujian province of China.

VCG | Getty Images

The U.S. financial services division of Chinese bank ICBC was hit with a cyberattack that reportedly disrupted the trading of Treasurys.

Industrial and Commercial Bank of China, the world’s largest lender by assets, said Thursday that its financial services arm, called ICBC Financial Services, experienced a ransomware attack “that resulted in disruption to certain” systems.

Immediately after discovering the hack, ICBC “isolated impacted systems to contain the incident,” the state-owned bank said.

Ransomware is a type of cyberattack. It involves hackers taking control of systems or information and only letting them go once the victim has paid a ransom. It’s a type of attack that has seen an explosion in popularity among bad actors in recent years.

ICBC did not reveal who was behind the attack but said it has been “conducting a thorough investigation and is progressing its recovery efforts with the support of its professional team of information security experts.”

The Chinese bank also said it is working with law enforcement.

ICBC said it “successfully cleared” U.S. Treasury trades executed Wednesday and repo financing trades done on Thursday. A repo is a repurchase agreement, a type of short-term borrowing for dealers in government bonds.

However, multiple news outlets reported there was disruption to U.S. Treasury trades. The Financial Times, citing traders and banks, said Friday that the ransomware attack prevented the ICBC division from settling Treasury trades on behalf of other market participants.

The U.S. Treasury Department told CNBC: “We are aware of the cybersecurity issue and are in regular contact with key financial sector participants, in addition to federal regulators. We continue to monitor the situation.”

ICBC said the email and business systems of its U.S. financial services arm operate independently of ICBC’s China operations. The systems of its head office, the ICBC New York branch, and other domestic and overseas affiliated institutions were not affected by the cyberattack, ICBC said.

What did the Chinese government say?

Wang Wenbin, spokesperson for China’s Ministry of Foreign Affairs, said Friday that ICBC is striving to minimize the impact and losses after the attack, according to a Reuters report.

Speaking at a regular news conference, Wang said ICBC has paid close attention to the matter and has handled the emergency response and supervision well, according to Reuters.

What do we know about the ransomware attack?

Nobody has claimed responsibility for the attack yet and ICBC has not said who might be behind the attack.

In the cybersecurity world, finding out who is behind a cyberattack is often very difficult due to the techniques hackers use to mask their locations and identities.

But there are clues about what kind of software was used to carry out the attack.

Marcus Murray, founder of Swedish cybersecurity firm Truesec, said the ransomware used is called LockBit 3.0. Murray said this information has come from sources with relations to Truesec, but was unable to reveal who those sources are due to confidentiality reasons. The Financial Times reported, citing two sources, that LockBit 3.0 was the software behind the attack too. CNBC was unable to independently verify the information.

This kind of ransomware can make its way into an organization in many ways. For example, by someone clicking on a malicious link in an email. Once in, its aim is to extract sensitive information about a company.

VMWare cybersecurity team said in a blog last year that LockBit 3.0 is a “challenge for security researchers because each instance of the malware requires a unique password to run without which analysis is extremely difficult or impossible.” The researchers added that the ransomware is “heavily protected” against analysis.

The U.S. government’s Cybersecurity and Infrastructure Security Agency calls LockBit 3.0 “more modular and evasive,” making it harder to detect.

LockBit is the most popular strain of ransomware, accounting for around 28% of all known ransomware attacks from July 2022 to June 2023, according to data from cybersecurity firm Flashpoint.

What is LockBit?

The LockBit is the group behind the software. Its business model is known as “ransomware-as-a-service.” It effectively sells its malicious software to other hackers, known as affiliates, who then go on to carry out the cyberattacks.

The leader of the group goes by the online name of “LockBitSup” on dark web hacking forums.

“The group primarily posts in Russian and English, but according to its website, the group claims to be located in the Netherlands and to not be politically motivated,” Flashpoint said in a blogpost.

Top cybersecurity exec talks targeted hacks on U.S. diplomats

The group’s malware is known to target small and medium-sized businesses.

LockBit has previously claimed responsibility for ransomware attacks on Boeing and the U.K’s. Royal Mail.

In June, the U.S. Department of Justice charged a Russian national for his involvement in “deploying numerous LockBit ransomware and other cyberattacks” against computers in the U.S., Asia, Europe and Africa.

“LockBit actors have executed over 1,400 attacks against victims in the United States and around the world, issuing over $100 million in ransom demands and receiving at least as much as tens of millions of dollars in actual ransom payments made in the form of bitcoin,” the DOJ said in a press release in June.

— CNBC’s Steve Kopack contributed to this article.

Related Topics:
Continue Reading

Technology

Trump announces $100 billion investment in U.S. from TSMC, calls it ‘most powerful company’ in world

Published

4 hours ago

on

March 3, 2025

By

Trump announces 0 billion investment in U.S. from TSMC, calls it 'most powerful company' in world

C.C. Wei, TSMC Group CEO, stands on the future site of a chip factory under the name European Semiconductor Manufacturing Company (ESMC) during a symbolic ground-breaking ceremony. 

Sebastian Kahnert | Picture Alliance | Getty Images

Taiwan Semiconductor Manufacturing will pour $100 billion into bolstering chip manufacturing in the U.S., President Donald Trump announced Monday.

The president called the investment a “tremendous move by the most powerful company in the world.” The new capital brings TSMC’s total investment in the U.S. to $165 billion and will go toward building five new fabrication facilities in Arizona.

The announcement from TSMC, which supplies semiconductors to the likes of Nvidia and Apple for artificial intelligence use, supports the Trump administration’s ongoing efforts to make the U.S. an artificial intelligence hub.

Last month, Trump announced a multibillion-dollar AI infrastructure project with Oracle, OpenAI and Softbank. He’s also made numerous calls to bring semiconductor production back to the U.S. after much of the manufacturing industry moved abroad. Advancing semiconductor production in the U.S. is a matter of economic and national security, Trump said Monday.

Trump has repeatedly called out and accused Taiwan of stealing the U.S. chip manufacturing business and touted tariffs on semiconductor imports. The company’s finance chief, Wendell Huang, told CNBC in January that he was confident the new White House administration would continue funding the company’s U.S. ambitions.

TSMC has already made strides to expand its footprint in the U.S prior to Monday’s announcement. The company committed $12 billion in 2020 to build its first U.S. chip factory in Arizona, later raising that investment to $65 billion with a third factory. It has also gained U.S. government support through a $6.6 billion subsidy from the U.S. Commerce Department.

WATCH: Broadcom and TSMC exploring deals for parts of Intel, according to WSJ

Broadcom and TSMC exploring deals for parts of Intel, according to WSJ

Continue Reading

Technology

Microsoft unveils new voice-activated AI assistant for doctors

Published

4 hours ago

on

March 3, 2025

By

Microsoft unveils new voice-activated AI assistant for doctors

Microsoft is giving its health-care artificial intelligence tools a makeover. 

The company on Monday unveiled a new voice-activated AI assistant that combines capabilities from its dictation solution, Dragon Medical One, and ambient listening solution, DAX Copilot, into one tool.

“Dragon Copilot” will be able to help doctors quickly pull information from medical sources and automatically draft clinical notes, referral letters, post-visit summaries and more, according to the company. It’s Microsoft’s latest effort to help health-care workers cut down their daunting clerical workloads, which are a major source of burnout in the industry.

Clinicians spend nearly 28 hours a week on administrative tasks like documentation, for instance, according to an October study from Google Cloud.

“Through this technology, clinicians will have the ability to focus on the patient rather than the computer, and this is going to lead to better outcomes and ultimately better health care for all,” Dr. David Rhew, global chief medical officer at Microsoft, said Thursday in a briefing with reporters.

Microsoft acquired Nuance Communications, the company behind Dragon Medical One and DAX Copilot, for about $16 billion in 2021. As a result, Microsoft has become a major player in the fiercely competitive AI scribing market, which has exploded in popularity as health systems have been looking for tools to help address burnout. 

AI scribes like DAX Copilot allow doctors to draft clinical notes in real time as they consensually record their visits with patients. DAX Copilot has been used in more than 3 million patient visits across 600 health-care organizations in the last month, Microsoft said.   

Other companies like Abridge, which has raised more than $460 million according to PitchBook, and Suki, which has raised nearly $170 million, have developed similar scribing tools. Microsoft’s updated interface could help it stand out from its competitors. 

Dragon Copilot is accessible through a mobile app, browser or desktop, and it integrates directly with several different electronic health records, the company said. 

Clinicians will still be able to draft clinical notes with the assistant like they could with DAX Copilot, but they’ll be able to use natural language to edit their documentation and prompt it further, Kenn Harper, general manager of Dragon products at Microsoft, told reporters on the call.

For instance, a doctor could ask questions like, “Was the patient experiencing ear pain?” or “Can you add the ICD-10 codes to the assessment and plan?” Physicians can also ask broader treatment-related queries such as, “Should this patient be screened for lung cancer?” and get an answer with links to resources like the Centers for Disease Control and Prevention. 

WellSpan Health, which treats patients across 250 locations and nine hospitals throughout central Pennsylvania and northern Maryland, has been testing out Dragon Copilot with a group of clinicians in recent months. 

One of those clinicians is Dr. David Gasperack, chief medical officer of primary care services at WellSpan. It’s still early days, but Gasperack told CNBC the assistant is easy to use and has been more accurate than Microsoft’s existing offerings. 

“We’ve been asked more and more over time to do more administrative tasks that pull us away from the patient relationship and medical decision making,” Gasperack said. “This allows us to get back to that so we can focus on the patient, truly think about what’s needed.”

Microsoft declined to share the cost of Dragon Copilot but said the pricing structure is “competitive.” It will be easy for existing customers to upgrade to the new offering, the company added.   

Dragon Copilot will be generally available in the U.S. and Canada starting in May, Microsoft said. The roll out will expand to the U.K., the Netherlands, France and Germany in the months following.

“Our goal remains to restore the joy of practicing medicine for clinicians and provide a better experience for patients globally,” Rhew said.

Watch: What it’s like to have a doctor visit with AI

Continue Reading

Technology

Amazon-backed AI firm Anthropic valued at $61.5 billion after latest round

Published

5 hours ago

on

March 3, 2025

By

Amazon-backed AI firm Anthropic valued at .5 billion after latest round

Jaque Silva | Nurphoto | Getty Images

Anthropic on Monday closed its latest funding round at a $61.5 billion post-money valuation, the company confirmed to CNBC.

The $3.5 billion round was led by Lightspeed Venture Partners, and other investors included Salesforce Ventures, Cisco Investments, Fidelity Management & Research Company, General Catalyst, D1 Capital Partners and Jane Street, among others.

Anthropic, the artificial intelligence startup backed heavily by Amazon, was founded by former OpenAI research executives. It launched Claude in March 2023, and like OpenAI’s ChatGPT and Google’s Gemini, Claude has exploded in popularity as businesses incorporate generative AI chatbots across sales, marketing and customer service functions.

The startup plans to use the latest funding to advance its development of next-generation AI, particularly to “expand its compute capacity, deepen its research in mechanistic interpretability and alignment, and accelerate its international expansion in Asia and Europe,” according to a release.

Read more CNBC reporting on AI

In December, Anthropic’s revenue hit an annualized $1 billion, which was an increase of roughly 10x year over year, a source told CNBC at the time. The company’s revenue comes primarily from enterprise sales, and its clients currently include startups like Cursor, Codeium and Replit, as well as larger businesses like Zoom, Snowflake, Pfizer, Thomson Reuters and Novo Nordisk, the company behind Ozempic, according to a release.

Anthropic also spotlighted in its release about the funding round that its technology now fuels Amazon’s Alexa+, “bringing Claude to millions of households and Prime members.”

Krishna Rao, Anthropic’s CFO, said in a release that the latest investment “fuels our development of more intelligent and capable AI systems that expand what humans can achieve” and that “continued advances in scaling across all aspects of model training are powering breakthroughs in intelligence and expertise.”

News of the latest funding round after Google in January agreed to a new investment of more than $1 billion in Anthropic, a source familiar with the situation confirmed to CNBC at the time. The fresh funding built on Google’s past investments of $2 billion in Anthropic and 10% ownership stake in the startup, as well as a large cloud contract between the two companies. Anthropic is most well known for its Claude AI chatbot.

The generative AI market, which includes Anthropic and OpenAI as well as Google, Amazon, Microsoft and Meta, is predicted to top $1 trillion in revenue within a decade. Amazon and Microsoft, which is OpenAI’s principal investor, are backing generative AI startups with hefty investments as well as developing their own technologies.

Amazon announced that it would invest an additional $4 billion in Anthropic in November. That brought Amazon’s total investment in the startup to $8 billion. Amazon remains a minority investor, Anthropic confirmed to CNBC at the time, and does not have a board seat.

As part of the November investment, Amazon Web Services became Anthropic’s “primary cloud and training partner.” Anthropic has used Amazon Web Services’ Trainium and Inferentia chips to train and deploy its largest AI models since then.

Anthropic ramped up its technology development throughout last year, and in October, the startup said that its AI agents were able to use computers like humans can to complete complex tasks. Anthropic’s Computer Use capability allows its technology to interpret what’s on a computer screen, select buttons, enter text, navigate websites and execute tasks through any software and real-time internet browsing, the startup said.

Continue Reading

Trending