Morgan Stanley faces data breach, corporate client info stol...

Morgan Stanley faces data breach, corporate client info stolen in vendor hack | Malay Mail

Malay Mail | 2021-07-08 21:36

WASHINGTON, July 9 -- Morgan Stanley has disclosed that personal data of some of its corporate clients was stolen in January in a data breach that involved a third-party vendor and hackers accessed information, including social security numbers. Files stolen also included client names, addresses, date of birth and corporate company names. The bank's vendor, Guidehouse, which provides account maintenance services to its StockPlan Connect business, informed it about the breach in May, Morgan Stanley said in a letter dated July 2. The bank said attackers accessed information by exploiting a vulnerability in the vendor's server, Accellion FTA. While the exposure was patched within five days, the attackers obtained decryption key even though the files were encrypted. Guidehouse informed the bank it had found no evidence that the stolen data had been distributed online. A person familiar ...

Unlock these benefits
benefit

Get access to news, enforcement cases, events, and actionable tips and guides

benefit

Get regular email updates and offers

benefit

Job opportunities, mentorship and career guidance

benefit

Exclusive access to Data Protection community - ask questions, network and share knowledge with peers and experts via WhatsApp and Linkedin