Menu

  • Alerts
  • Incidents
  • News
  • APTs
  • Cyber Decoded
  • Cyber Hygiene
  • Cyber Review
  • Cyber Tips
  • Definitions
  • Malware
  • Threat Actors
  • Tutorials

Useful Tools

  • Password generator
  • Report an incident
  • Report to authorities
No Result
View All Result
CTF Hack Havoc
CyberMaterial
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
Hall of Hacks
  • Education
    • Cyber Decoded
    • Definitions
  • Information
    • Alerts
    • Incidents
    • News
  • Insights
    • Cyber Hygiene
    • Cyber Review
    • Tips
    • Tutorials
  • Support
    • Contact Us
    • Report an incident
  • About
    • About Us
    • Advertise with us
Get Help
No Result
View All Result
Hall of Hacks
CyberMaterial
No Result
View All Result
Home News

Morgan Stanley Settles Data Security

November 22, 2023
Reading Time: 6 mins read
in News
Morgan Stanley Settles Data Security

Morgan Stanley has agreed to a $6.5 million settlement following accusations of insecurely disposing of hardware containing unencrypted personal information, potentially exposing millions of customers. The Florida Attorney General’s Office revealed that the multinational investment bank neglected internal data security practices, hiring an inexperienced moving company for decommissioning.

This led to the sale of equipment at internet auctions without proper monitoring, exposing sensitive data. The investigation uncovered flaws in encryption software, missing servers, and inadequate vendor controls, prompting the settlement, which includes mandated security improvements, data encryption, and comprehensive information security measures.

The investigation disclosed that during the decommissioning process, Morgan Stanley failed to properly erase unencrypted personal information stored on devices, allowing the moving company to sell the computer equipment without the bank’s knowledge. Furthermore, a manufacturer flaw in encryption software led to the discovery of 42 missing servers potentially containing unencrypted customer information.

The settlement, which addresses security lapses, requires Morgan Stanley to pay $6.5 million to the states of Florida, Connecticut, Indiana, New Jersey, New York, and Vermont. Additionally, the bank is obligated to implement encryption for data at rest and in transit, establish a comprehensive data collection, use, retention, and disposal policy, and maintain an information security program, incident response plan, and vendor risk assessment team.

The agreement underscores the importance of proper data security practices, emphasizing the need for financial institutions to take measures to protect customer information during decommissioning processes.

The settlement not only addresses the financial aspect but also mandates substantial improvements in Morgan Stanley’s approach to data security, aiming to prevent future exposure of sensitive customer information through enhanced encryption and comprehensive security measures.

Reference:
  • ASSURANCE OF VOLUNTARY COMPLIANCE
Tags: Cyber AttacksCyber NewsCyber News 2023CybersecurityMorgan StanleyNovember 2023Personal InformationPrivacy
ADVERTISEMENT

Related Posts

US House Bans WhatsApp From Staff Devices

US House Bans WhatsApp From Staff Devices

June 24, 2025
UK Needs More Cyber Advisors For Small Firms

UK Needs More Cyber Advisors For Small Firms

June 24, 2025
OWASP Releases New AI Security Test Guide

OWASP Releases New AI Security Test Guide

June 24, 2025
Cloudflare Blocks Record 7.3 Tbps DDoS

US Expects Iranian Cyberattacks to Escalate

June 23, 2025
Cloudflare Blocks Record 7.3 Tbps DDoS

AT&T to Pay $177M for Massive Data Breach

June 23, 2025
Cloudflare Blocks Record 7.3 Tbps DDoS

Cloudflare Blocks Record 7.3 Tbps DDoS

June 23, 2025

Latest Alerts

Chinese Hackers Build Router Spy Network

New Malware Skims WordPress E-commerce Sites

BEARDSHELL and COVENANT Malware Uncovered

Prometei Botnet Attacks Servers for Crypto

Spyware in App Stores Steals Your Photos

Stealth Malware Targets Fortinet Firewalls

Subscribe to our newsletter

    Latest Incidents

    Hacken Token Crashes 99 Percent After Hack

    Paraguayan Government Hit By Cyberattack

    Hackers Leak Saudi Games Athlete Data

    Aflac Hacked in Spree on Insurance Firms

    CoinMarketCap Doodle Hack Steals Crypto

    UK’s Oxford Council Legacy Systems Breached

    CyberMaterial Logo
    • About Us
    • Contact Us
    • Jobs
    • Legal and Privacy Policy
    • Site Map

    © 2025 | CyberMaterial | All rights reserved

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In

    Add New Playlist

    No Result
    View All Result
    • Alerts
    • Incidents
    • News
    • Cyber Decoded
    • Cyber Hygiene
    • Cyber Review
    • Definitions
    • Malware
    • Cyber Tips
    • Tutorials
    • Advanced Persistent Threats
    • Threat Actors
    • Report an incident
    • Password Generator
    • About Us
    • Contact Us
    • Advertise with us

    Copyright © 2025 CyberMaterial