fb

ACCA AUTUMN SAVINGS 20% OFF

Second hand servers + personal data = $35 million

Second hand servers + personal data = $35 million

Morgan Stanley is one of the most renowned banks in the world. It started business on Wall Street in New York back in 1935 and has grown so that it now has a market capitalisation of around $150 billion and employs approximately 70,000.

It’s obviously good at a lot of things but one area it wasn’t so good at was looking after the personal data of about 15 million customers.

Probably one of the first things that come to mind when protecting the personal details of clients are the security systems to protect the data within the bank such as passwords, firewalls, etc.

The problem for Morgan Stanley though was the data that was in computer hardware that was scrapped.

The US Securities and Exchange Commission (SEC) accused Smith Barney (Morgan Stanley’s wealth management business), of “astonishing” shortcomings.

The problems arose when Morgan Stanley disposed of thousands of hard drives and servers.

On multiple occasions a moving and storage business with no experience in data destruction services was hired to decommission these hard drives.

In other words, the hard drives and servers which were being scrapped should have had all the personal details removed.

Unfortunately this didn’t happen and instead the moving business then sold thousands of these devices to a third party. This third party then resold them on an internet auction site.

Some of the devices were subsequently recovered but the SEC said that Morgan Stanley “has not recovered the vast majority of the devices”.

The devices which were recovered were found to contain “thousands of pieces of unencrypted customer data”.

The end result is that Morgan Stanley has agreed to pay a $35 million penalty to settle charges.

There’s a valuable lesson to be learnt from this as responsibility for the safeguarding of personal data remains with the organisation and this includes making sure that the destruction of hardware containing that data is done in such a way that the data is erased and does not find it’s way into other people’s hands.

Share this entry

Related articles

View All Articles
Superman helps hackers.
May 25, 2022
Title
Superman helps hackers.
Excerpt

It’s a sign of the times that hackers are constantly on the lookout for weaknesses in people’s computer securi [...]

I never emailed you...
Nov 05, 2021
Title
I never emailed you...
Excerpt
Sometimes it’s the simple scams that can cause the most damage. We hear all the time about ignoring scam phishing emails where fraudste [...]

Recent articles

View All Articles
Two jobs, one big mistake…
Sep 10, 2025
Title
Two jobs, one big mistake…
Excerpt

Can you really hold down two full-time jobs at the same time? For most of us, it sounds […]

Cash is (no longer) King…
Sep 08, 2025
Title
Cash is (no longer) King…
Excerpt

For generations, a wallet or purse has been an everyday essential — a small, leather-bound companion holding coins, […]

Nestlé CEO fired over office relationship…
Sep 04, 2025
Title
Nestlé CEO fired over office relationship…
Excerpt

Nestlé is the world’s largest food and beverage company, with a portfolio that includes some of the most […]

When ethical claims backfire: Armani’s €3.5m fine
Aug 20, 2025
Title
When ethical claims backfire: Armani’s €3.5m fine
Excerpt

Luxury brands are often seen as the gold standard of quality, exclusivity, and prestige. They charge premium prices […]

The benefits of sleeping on the job…
Jul 21, 2025
Title
The benefits of sleeping on the job…
Excerpt

My guess is that not a lot of you have gone up to your boss and said that […]

A car wash, wallet and apartment – laundering explained…
Jul 18, 2025
Title
A car wash, wallet and apartment – laundering explained…
Excerpt

Money laundering might sound like something from a gangster movie, but it’s a serious real-world issue that affects […]

Take a selfie and then return it…
Jul 16, 2025
Title
Take a selfie and then return it…
Excerpt

The latest must-have outfit trending on TikTok might be out of fashion by the time it arrives on […]

When auditors overstay their welcome…
Jul 11, 2025
Title
When auditors overstay their welcome…
Excerpt

A cornerstone of audit is independence. A recent stumble by EY – one of the Big Four accounting […]

Get in touch and we will help you.
Any questions?Request a demo