9 {{ upvoteCount | shortNum }}
9 {{ upvoteCount | shortNum }}

76 Million JP Morgan Bank Accounts Hacked

by positivenegative
7 replies
  • OFF TOPIC
    • |
. . . but nothing to worry about says spokeswoman.

Right. It's only the second time this year after all.

JP Morgan sees 76 million customer accounts hacked
  • Profile picture of the author seasoned
    To the best of my knowledge, the only retail banking JP morgan does is MORTGAGES! The part of JP morgan that does normal retail banking, outside of mortgages, is CHASE! So WHICH IS IT?

    Steve
    {{ DiscussionBoard.errors[9569149].message }}
  • Profile picture of the author ForumGuru
    Banned
    Originally Posted by seasoned View Post

    To the best of my knowledge, the only retail banking JP morgan does is MORTGAGES! The part of JP morgan that does normal retail banking, outside of mortgages, is CHASE! So WHICH IS IT?

    Steve
    Steve,

    Both chase.com and jpmorgan.com were compromised...


    J.P. Morgan Says About 76 Million Households Affected By Cyber Breach
    Bank, in Update on Previously Disclosed Data Breach, Says Hackers Got Contact Information But Not Logins
    The attacks focused on servers that housed user contact information of current and former customers who accessed chase.com or jpmorgan.com via the Internet or mobile devices in past years, these people said, though the time frame is unclear. The bank said it has 65 million Chase customers and four million small-business customers.

    Households can refer to individuals or an account housing multiple products like mortgage loans or separate checking accounts. Households and small businesses affected by the breach are within the bank’s asset-management unit and community and consumer-banking unit, including customers who bank at Chase or use the bank’s credit cards, they added.

    J.P. Morgan Says About 76 Million Households Affected By Cyber Breach - WSJ
    Remember the reports a couple of months ago...

    JPMorgan Hackers Came In the Front Door -- in June. Two Months of Mayhem - Bloomberg

    Cheers

    -don
    {{ DiscussionBoard.errors[9569165].message }}
    • Profile picture of the author Cali16
      With all this hacking going on, I'm getting very close to burying most my money in a tin can in the back yard and keeping the rest under the mattress!

      How is it we can send a rover to Mars, but can't come up with better online security measures...??
      Signature
      If you don't face your fears, the only thing you'll ever see is what's in your comfort zone. ~Anne McClain, astronaut
      {{ DiscussionBoard.errors[9569210].message }}
      • Profile picture of the author seasoned
        Originally Posted by Cali16 View Post

        With all this hacking going on, I'm getting very close to burying most my money in a tin can in the back yard and keeping the rest under the mattress!

        How is it we can send a rover to Mars, but can't come up with better online security measures...??
        I once made a BBS on my APPLE II! It actually had a dual terminal communication feature. I EVEN offered an AWARD for anyone that could break in. Nobody DID! WHY? Well, I used the parsing intercept vector to do the second process that could only be used locally. It detected if a program was running and, if it wasn't, the system would reboot.

        That was like 1950s type technology. They COULD do that. Unfortunately, too many are too lazy and UNIX,while nice, has a couple bugs. Programs on it have bugs. And httpd wasn't made to secure originally.

        The SAD part is that companies are SUPPOSED to encrypt a lot of user info. FEW encrypt ANYTHING! They are SUPPOSED to isolate their production servers, many do NOT! They SHOULD use real compiled software, and you can bet almost NONE do! SO, forgetting all the bugs that let users control the server, hackers should have obfuscation to deal with. They DON'T!

        I once worked at one bank, and even contacting the network department, and pleading with them telling them of a deadline that could cost them MILLIONS,they wouldn't turn their private modem on. Once on, I had to meander through several machines, and several layers of security to get to the main machine. I wonder how tight their security is TODAY! I doubt it is any better than anyone elses. THOSE were the days. And THAT was the mid 1980s! IMAGINE! I had to go through about 3 layers of security before I could really do ANYTHING!

        HECK, I was the sysadmin at my company, and I set up our modem so you needed to enter a code for it to work. If a hacker connected to the modem, it looked like it was disconnected!!!!!!!! They got NO feedback of ANY sort. VALID users had to enter the string, hit return and, if it failed, repeat the procedure. After THAT, they could enter the user name and password. Only when all THAT was correct, would they be on the machine.

        To make things WORSE, sometimes it WAS disconnected!

        OH, and they have security that is almost SCIFI level. It would be NICE if they simply sent customers a FOB, and used it like they do internally. It would be near perfect, disable the ability to access anothers account, and validate identity. They could have the customer pay maybe $16 USD to cover the extra costs. They often do this for consultants, why not customers?

        Steve
        {{ DiscussionBoard.errors[9569242].message }}
  • Profile picture of the author ForumGuru
    Banned
    250 million bucks this year and 1000 employees focused on cybersecurity was not enough for JPMorganChase. It's not an easy task to keep massive financial web portals and associated DBs etc. protected considering the amount of servers, the complexity of the systems, and the amount of dangerous and robust hacking attempts these entities suffer on a daily basis.

    JPMorgan reported to shareholders that it will have spent $250 million on cybersecurity (pdf) by the end of 2014. It employs more than 1,000 people for these efforts, according to the annual shareholder letter from Chairman and CEO Jamie Dimon.

    Why $250M didn't protect JPMorgan from hackers - CBS News
    Cheers

    -don
    {{ DiscussionBoard.errors[9569334].message }}
  • Profile picture of the author Patrician
    Here is the "compromise" - their insurance will pay us back. 100% what we lose to fraud. So this is like 'management by exception'.

    They could care less about law enforcement. And as Cali16 sees they are not really doing adequate security -
    ummmm duh. (anywhere it seems)

    -->> even the pentagon was hacked!

    When my ATM/Visa Debit Card was hacked by swiping the magnetic strip IN A PHYSICAL STORE (and they then made a new card with the code in whatever iron curtain country).

    My bank gave me my money back in just a few days max (it was a while back estimate). They did an investigation for 6 weeks. But that is it. The bank, the local police and the [ fbi weren't interested in who I thought did it - ("under $500k") ] *

    ... well i guess it's the best when all you get is 100% of your money back.

    what the heck!

    right?
    Signature

    Patricia Brucoli
    Plug-In Profit Site Helpdesk

    {{ DiscussionBoard.errors[9569343].message }}
  • Profile picture of the author TLTheLiberator
    That would be something if all the hackers wanted to do is to destroy the mortgage records of the company like in a movie I've seen in which I believe Emilio Esteveve starred in.
    Signature

    "It's easier to fool people than to convince them that they have been fooled. -- Mark Twain

    {{ DiscussionBoard.errors[9569898].message }}

Trending Topics