Morgan Stanley Was Compromised in Accellion Breach
Microsoft says PrintNightmare patch works, new phishing technique stealthily downloads Zloader, Leonardtown crippled by Kaseya ransomware attack, Espionage campaign targets Latin America, more
Please consider helping Metacurity to survive and thrive by becoming a premium subscriber. You’ll be helping yourself, too, by gaining access to our archives and premium-only content. Thank you.
Investment banking firm Morgan Stanley told the New Hampshire Attorney General that the personal information of some customers was compromised through a third-party vendor that was using the Accellion FTA service.
The firm said that one of the organizations affected by the FTA incident is Guidehouse, informed them in May 2021 that some threat actors had exploited Accellion FTA to access Morgan Stanley documents that included personal information of StockPlan Connect participants. Even though the stolen files were encrypted, the adversary gained the encryption key during the attack and “was able to obtain the decryption key during the security incident, due to the Accellion FTA vulnerability.” (Ionut Arghire / Security Week)
Related: IT Pro, Security News | Tech Times, Heimdal Security Blog, Eco…
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.