FierceFinanceFierceFinanceITFierceComplianceIT   FierceCIO

NYSE data found on public server

July 29, 2009 — 11:22am ET | By Jim Kim

Sensitive information about the technical infrastructure of the New York Stock Exchange's computer network was left unsecured on a public server for possibly more than a year, reports Threat Level. The website made the situation known to NYSE Euronext, which promptly removed the information from a public FTC server maintained by EMC. The information was accompanied by a note dated April 2, 2008, that read: "This directory contains all relevant data to the NYSE account." NYSE Euronext said the incident did not affect customers, though it is unclear exactly who viewed the information.

We've been discussing data loss prevention technologies as of late, especially in the wake of the Goldman Sachs code-theft scandal. This strikes me as a good reminder that companies who think their data cannot migrate beyond their firewalls should think again. This is certainly a black eye for EMC. Threat Level reports that the FTP server was used to share configuration information between EMC engineers, vendors and customers. "This was a breakdown of process within EMC," one source told the publication. 

For more:
- here's the article

Related Articles:
Software programmer steals from Goldman Sachs?
Are you up to speed on data-loss prevention?
More on compliance risks and new technologies
Pay attention to storage platforms

SHARE WITH:
Email Twitter Facebook LinkedIn StumbleUpon
Get Your FREE FierceComplianceIT Email Newsletter:
Be the first to comment

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.