For the past few years, I’ve covered the consequences Kookmin, NongHyup, and Lotte Card have faced after cardholders’ information was stolen by an contractor’s employee over an 18-month period from 2012 to 2013. I continue to be impressed that even though some of the fines or consequences haven’t been huge by our standards, there have been consequences to both the…
Category: Financial Sector
Leaky database leaves Oklahoma police, bank vulnerable to intruders
Dell Cameron reports: A leaky database has exposed the physical security of multiple Oklahoma Department of Public Safety facilities and at least one Oklahoma bank. The vulnerability—which has reportedly been fixed—was revealed on Tuesday by Chris Vickery, a MacKeeper security researcher who this year has revealed numerous data breaches affecting millions of Americans. The misconfigured…
US regulator freezes British man’s assets over claims he hacked stockbroking accounts
Marion Dakers reports: The Securities and Exchange Commission is pursuing a British man over claims he hacked into US investors’ accounts to place unauthorised trades. The American financial regulator has asked a New York court to freeze the assets of Idris Dayo Mustapha while it tries to recover the proceeds of his alleged trades and…
Bank of Montreal ATM “hacked” with default password
CORRECTION: This story was originally reported in 2014. Not sure why CJAD reported it as recent news, but thanks to Catalin Cimpanu for letting me know. Original post: So… in a story about another breach, which was also linked to using a default password, CJAD in Canada mentioned a breach that occurred last week: Two 14-year-old high school…
Former Goldman Sachs Banker Barred From Industry Over Fed Leak
Jesse Westbrook reports: A former Goldman Sachs Group Inc. banker who pleaded guilty to receiving documents that had been misappropriated from the Federal Reserve Bank of New York has been banned from the financial industry. The U.S. Securities and Exchange Commission agreed to a settlement with Rohit Bansal that bars him from any association with…
Morgan Stanley Fined Over Inadequate Security Tied to Galen Marsh Data Breach
Matt Robinson reports that Morgan Stanley has been fined $1 million by the U.S. Securities and Exchange Commission to settle allegations that it failed to protect customer data improperly taken by a former financial adviser, Galen Marsh. Marsh pleaded guilty in September, 2015 to making thousands of unauthorized searches on his employer’s system and to copying information on…