JP Morgan denies that system blueprints were stolen in June cyber attack

[InfoSec News <alerts () infosecnews org>]

http://www.computing.co.uk/ctg/news/2369726/jp-morgan-denies-that-system-blueprints-were-stolen-in-june-cyber-attack

By Graeme Burton
Computing.co.uk
16 Sep 2014

More details have emerged about the attack on banking giant JP Morgan, 
which saw sensitive banking systems hacked and details about clients and 
deals apparently transmitted to systems in Russia.

The breach occurred in June, but has only recently been disclosed.

According to the latest disclosures, the hackers were able to access 
information about one million customer accounts and also obtained a list 
of the software applications installed on the bank's computers. More than 
90 of the bank's servers were affected, and the attackers gained 
high-level administrative privileges in the systems that they cracked. JP 
Morgan also claims that its charity website, JP Morgan Corporate 
Challenge, was attacked with hackers getting login credentials and 
passwords. However, the bank says that it doesn't know whether the two 
attacks are related.

Dr Mike Lloyd, chief technology officer at security analytics company 
RedSeal Networks, suggested that the information accessed by the attackers 
indicated that they will almost be certainly back again.

[...]



--
Evident.io - Continuous Cloud Security for AWS.
Identify and mitigate risks in 5 minutes or less.
Sign up for a free trial @ https://evident.io/