fb

ACCA SUMMER SALE 20% OFF

Second hand servers + personal data = $35 million

Second hand servers + personal data = $35 million

Morgan Stanley is one of the most renowned banks in the world. It started business on Wall Street in New York back in 1935 and has grown so that it now has a market capitalisation of around $150 billion and employs approximately 70,000.

It’s obviously good at a lot of things but one area it wasn’t so good at was looking after the personal data of about 15 million customers.

Probably one of the first things that come to mind when protecting the personal details of clients are the security systems to protect the data within the bank such as passwords, firewalls, etc.

The problem for Morgan Stanley though was the data that was in computer hardware that was scrapped.

The US Securities and Exchange Commission (SEC) accused Smith Barney (Morgan Stanley’s wealth management business), of “astonishing” shortcomings.

The problems arose when Morgan Stanley disposed of thousands of hard drives and servers.

On multiple occasions a moving and storage business with no experience in data destruction services was hired to decommission these hard drives.

In other words, the hard drives and servers which were being scrapped should have had all the personal details removed.

Unfortunately this didn’t happen and instead the moving business then sold thousands of these devices to a third party. This third party then resold them on an internet auction site.

Some of the devices were subsequently recovered but the SEC said that Morgan Stanley “has not recovered the vast majority of the devices”.

The devices which were recovered were found to contain “thousands of pieces of unencrypted customer data”.

The end result is that Morgan Stanley has agreed to pay a $35 million penalty to settle charges.

There’s a valuable lesson to be learnt from this as responsibility for the safeguarding of personal data remains with the organisation and this includes making sure that the destruction of hardware containing that data is done in such a way that the data is erased and does not find it’s way into other people’s hands.

Share this entry

Related articles

View All Articles
Superman helps hackers.
May 25, 2022
Title
Superman helps hackers.
Excerpt

It’s a sign of the times that hackers are constantly on the lookout for weaknesses in people’s computer securi [...]

I never emailed you...
Nov 05, 2021
Title
I never emailed you...
Excerpt
Sometimes it’s the simple scams that can cause the most damage. We hear all the time about ignoring scam phishing emails where fraudste [...]
KPMG fined £700,000.
Apr 04, 2020
Title
KPMG fined £700,000.
Excerpt

KPMG in the UK has been fined by the Financial Reporting Council for what only can be described as pretty poor audi [...]

Recent articles

View All Articles
“Just Build It” – the Nike LEGO collaboration
Jun 12, 2025
Title
“Just Build It” – the Nike LEGO collaboration
Excerpt

Nike and LEGO are teaming up to launch co-branded products and experiences aimed at inspiring kids through active […]

The road to electric cars is full of potholes…
May 28, 2025
Title
The road to electric cars is full of potholes…
Excerpt

The electric vehicle (EV) market has seen tremendous growth in recent years, with major car manufacturers and startups […]

Is the stage set for airline pricing at the theatre?
May 26, 2025
Title
Is the stage set for airline pricing at the theatre?
Excerpt

Imagine paying £300 for a theatre ticket, only to find there’s more to pay if you want to […]

WeightWatchers files for bankruptcy as drugs take over…
May 12, 2025
Title
WeightWatchers files for bankruptcy as drugs take over…
Excerpt

Weight-loss drugs like Ozempic and Wegovy have revolutionised the weight management market, leaving companies which were once dominant […]

A whole new world: Disney’s Middle East move
May 08, 2025
Title
A whole new world: Disney’s Middle East move
Excerpt

The Walt Disney Company has announced its first-ever theme park in the Middle East, set to be built […]

Big 4 beware: Unity’s got $300M and no audit drama…
Apr 29, 2025
Title
Big 4 beware: Unity’s got $300M and no audit drama…
Excerpt

The former boss of EY and the former chief operating officer of PwC in the UK, are launching […]

Nothing to whine about…
Apr 22, 2025
Title
Nothing to whine about…
Excerpt

The wine industry, steeped in centuries of tradition, is experiencing a shake-up that’s sparking debate among enthusiasts and […]

PwC exits 9 African countries
Apr 18, 2025
Title
PwC exits 9 African countries
Excerpt

PwC, one of the Big Four accounting firms, recently announced the closure of its operations in nine Sub-Saharan […]

Get in touch and we will help you.
Any questions?Request a demo