Morgan Stanley faces data breach, corporate client info stolen in vendor hack
Reuters
Published Jul 08, 2021 11:17AM ET
Updated Jul 08, 2021 01:26PM ET
By Niket Nishant
(Reuters) -Morgan Stanley has disclosed that personal data of some of its corporate clients was stolen in January in a data breach that involved a third-party vendor and hackers accessed information, including social security numbers.
Files stolen also included client names, addresses, date of birth and corporate company names.
The bank's vendor, Guidehouse, which provides account maintenance services to its StockPlan Connect business, informed it about the breach in May, Morgan Stanley (NYSE:MS) said in a letter dated July 2.
The bank said attackers accessed information by exploiting a vulnerability in the vendor's server, Accellion FTA. While the exposure was patched within five days, the attackers obtained decryption key even though the files were encrypted.
Guidehouse informed the bank it had found no evidence that the stolen data had been distributed online.
A person familiar with the matter said the files have been recovered and the bank is monitoring the dark web for any evidence of posting of client information.
The vendor, meanwhile, has engaged credit firm Experian (OTC:EXPGF) to offer free credit monitoring services for 24 months for clients that may have been impacted by the breach, the person said.
"The protection of client data is of the utmost importance and is something we take very seriously. We are in close contact with Guidehouse and are taking steps to mitigate potential risks to clients," a bank spokesperson said.
The hack, which was reported earlier by technology news portal Bleeping Computer, was discovered in March by Guidehouse and its impact on Morgan Stanley was found in May, the bank said.
Get The News You Want
Written By: Reuters
Trading in financial instruments and/or cryptocurrencies involves high risks including the risk of losing some, or all, of your investment amount, and may not be suitable for all investors. Prices of cryptocurrencies are extremely volatile and may be affected by external factors such as financial, regulatory or political events. Trading on margin increases the financial risks.
Before deciding to trade in financial instrument or cryptocurrencies you should be fully informed of the risks and costs associated with trading the financial markets, carefully consider your investment objectives, level of experience, and risk appetite, and seek professional advice where needed.
Fusion Media would like to remind you that the data contained in this website is not necessarily real-time nor accurate. The data and prices on the website are not necessarily provided by any market or exchange, but may be provided by market makers, and so prices may not be accurate and may differ from the actual price at any given market, meaning prices are indicative and not appropriate for trading purposes. Fusion Media and any provider of the data contained in this website will not accept liability for any loss or damage as a result of your trading, or your reliance on the information contained within this website.
It is prohibited to use, store, reproduce, display, modify, transmit or distribute the data contained in this website without the explicit prior written permission of Fusion Media and/or the data provider. All intellectual property rights are reserved by the providers and/or the exchange providing the data contained in this website.
Fusion Media may be compensated by the advertisers that appear on the website, based on your interaction with the advertisements or advertisers.