This time it's JPMorgan/Chase - from the New York Times:
JPMorgan Chase Says More Than 76 Million Households Were Compromised in Cyberattack
A cyberattack this summer on JPMorgan Chase compromised more than 76 million household accounts and seven million small-business accounts, making it among the largest corporate hacks ever discovered.
The latest revelations, which were disclosed in a regulatory filing on Thursday, vastly dwarf earlier estimates that hackers had gained access to roughly one million customer accounts.
The new details about the extent of the cyberattack — which began in June but was not discovered until July — sent JPMorgan scrambling for the second time in just three months to contain the fallout.
As the severity of the attack became more clear in recent days and new information was unearthed, some top executives flew back to New York from Naples, Fla., where many had convened for a leadership conference, according to several people briefed on the matter.
Hackers were able to burrow deep into JPMorgan’s computer systems, accessing the accounts of more than 90 servers — a breach that underscores just how vulnerable the global financial system is to cybercrime. Until now, most of the largest cyberattacks on corporations have been confined to retailers like Target and Home Depot.
A bit more:
It is still not clear how hackers managed to gain deep access to the bank’s computer network. By the time the bank’s security team discovered the breach in late July, hackers had already gained the highest level of administrative privilege to more than 90 of the bank’s computer servers, according to several people briefed on the results of the bank’s forensics investigation who were not allowed to discuss it publicly.
Emphasis mine - rooting 90 servers? Ho... Li... Crap... That is a breach of the highest order. These machines will have to be stripped down to bare metal and rebuilt - who knows what hidden bit of malware could be hiding there. Amazed that they do not restrict the incoming IP addresses. Simple to do, hard to spoof and will knock out 99% of your problems. Want to access a critical machine? Come from a known and trusted address.
Leave a comment