4.1 C
London
Sunday, February 5, 2023

Morgan Stanley Pays $35 Million After 15 Million Customers’ Personal Data Hard Drives Turn Up In Auction • londonbusinessblog.com

Must read

School food vendor apologizes for ‘unforgivable’ Black History Month menu, and it’s not the first time

A vendor that supplies meals to schools apologized for an "accidental insensitivity" Black History Month menu, echoing similar apologies it has made for more...

Elon Musk says Twitter will offer a free write-only API to bots that deliver ‘good’ content londonbusinessblog.com

Last week, Twitter said it will stop providing free access to its APIs starting February 9. Now days before the deadline, Elon Musk...

Laoshi’s $570,000 Card Game • londonbusinessblog.com

Most of the pitch deck teardowns to date (here's a handy list of the 30+ we've published so far) have been for institutional funding...

Malcolm Nance- Wiki, age, height, net worth, wife, ethnicity

Malcolm Nancy is the Chief Counter-Terrorism Analyst for MSNBC in the United States. Malcolm Nance is a citizen of Columbia County and a...
Shreya Christinahttps://londonbusinessblog.com
Shreya has been with londonbusinessblog.com for 3 years, writing copy for client websites, blog posts, EDMs and other mediums to engage readers and encourage action. By collaborating with clients, our SEO manager and the wider londonbusinessblog.com team, Shreya seeks to understand an audience before creating memorable, persuasive copy.

The US Securities and Exchange Commission has agreed to settle the charges against Morgan Stanley Smith Barney (MSSB) for “astonishing” failure to protect the personal identification information of some 15 million customers.

MSSB, now known as Morgan Stanley Wealth Management, is the wealth and wealth management division of banking giant Morgan Stanley, which this week agreed to pay $35 million to settle allegations that it did not properly dispose of hard drives and servers that contain the personal data of its customers. data over a five-year period as early as 2015.

Morgan Stanley hired a moving and storage company with “no experience or expertise in data destruction services,” according to the SEC, and failed to properly audit the moving company’s work. Some hard drives were later found on an internet auction site with customers’ personal information still stored in them.

“While MSSB has recovered some devices that have been shown to contain thousands of unencrypted customer data, the company has not recovered the vast majority of the devices,” the SEC said. said in a statement.

The SEC also alleged that Morgan Stanley lost track of 42 servers that may contain unencrypted customer data when it dismantled local office and branch servers as part of a hardware refresh program. The regulator added that during the process, MSSB discovered that the local devices that were decommissioned were equipped with encryption capabilities, but had not activated the encryption software.

“MSSB’s failures in this case are astonishing. Customers entrust their personal information to financial professionals with the understanding and expectation that it will be protected, and MSSB has failed miserably in this regard,” said Gurbir S. Grewal, director of the SEC’s enforcement division. “If this sensitive information is not properly secured, it could fall into the wrong hands and have disastrous consequences for investors. Today’s action sends a clear message to financial institutions that they must take their obligation to protect such data seriously.”

In a statement to londonbusinessblog.com, Morgan Stanley did not admit or deny the findings, but said it is “glad to resolve this matter.”

“We have previously notified applicable customers of these matters, which occurred several years ago, and have not discovered any unauthorized access or misuse of personal customer information,” said Susan Siering, a Morgan Stanley spokesperson.

The news of the SEC’s fine comes after Morgan Stanley became entangled in a data breach last year as a result of the Accellion hack. The investment banking business — no stranger to data breaches — admitted that attackers stole personal information from its customers by hacking into an Accellion server, which it uses for file sharing and transferring. from a third party.

More articles

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Latest article

School food vendor apologizes for ‘unforgivable’ Black History Month menu, and it’s not the first time

A vendor that supplies meals to schools apologized for an "accidental insensitivity" Black History Month menu, echoing similar apologies it has made for more...

Elon Musk says Twitter will offer a free write-only API to bots that deliver ‘good’ content londonbusinessblog.com

Last week, Twitter said it will stop providing free access to its APIs starting February 9. Now days before the deadline, Elon Musk...

Laoshi’s $570,000 Card Game • londonbusinessblog.com

Most of the pitch deck teardowns to date (here's a handy list of the 30+ we've published so far) have been for institutional funding...

Malcolm Nance- Wiki, age, height, net worth, wife, ethnicity

Malcolm Nancy is the Chief Counter-Terrorism Analyst for MSNBC in the United States. Malcolm Nance is a citizen of Columbia County and a...

Apple could introduce a more expensive iPhone ‘Ultra’ in 2024

Apple is exploring the possibility of launching a more expensive iPhone "Ultra" over the iPhone Pro and Pro Max models, according to Apple tracker...