Investment banking firm Morgan Stanley experienced a data breach incident after its third-party vendor Accellion FTA server was targeted in a ransomware attack.
The breach compromised the personal data including names, addresses, Social security numbers, and other information of its customers and clients.
Morgan Stanley along with Guidehouse investigated the incident and took further preventive steps.
TPRM report: https://scoringcyber.rankiteo.com/company/morgan-stanley
"id": "mor75918422",
"linkid": "morgan-stanley",
"type": "Breach",
"date": "07/2021",
"severity": "90",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Finance',
'name': 'Morgan Stanley',
'type': 'Investment Banking Firm'}],
'attack_vector': 'Ransomware attack via third-party vendor',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'addresses',
'Social Security numbers',
'other information']},
'description': 'Morgan Stanley experienced a data breach incident after its '
'third-party vendor Accellion FTA server was targeted in a '
'ransomware attack. The breach compromised the personal data '
'including names, addresses, Social Security numbers, and '
'other information of its customers and clients. Morgan '
'Stanley along with Guidehouse investigated the incident and '
'took further preventive steps.',
'impact': {'data_compromised': ['names',
'addresses',
'Social Security numbers',
'other information'],
'systems_affected': ['Accellion FTA server']},
'initial_access_broker': {'entry_point': 'Accellion FTA server'},
'investigation_status': 'Investigated by Morgan Stanley and Guidehouse',
'response': {'third_party_assistance': ['Guidehouse']},
'title': 'Morgan Stanley Data Breach via Accellion FTA Server',
'type': 'Data Breach',
'vulnerability_exploited': 'Accellion FTA server vulnerability'}