Monday, September 8, 2014

JPMorgan saw tech exodus

JPMorgan saw tech exodus before breach by hackers

JPMorgan saw tech exodus before breach by hackers

As hackers pierced JPMorgan Chase & Co's defenses in June, the bank's cybersecurity chief was just getting acquainted with his employer and its sprawling technology infrastructure. 

Greg Rattray, a former US Air Force commander for information warfare, became JPMorgan's head of information security that month after upheaval at the highest levels of the bank's tech division. His predecessor, Anthony Belfiore, had resigned early this year to join at least five JPMorgan leaders at First Data Corp. In between, Anish Bhimani was acting security officer while holding at least one other tech role. 

"It's shocking that this happened at the beginning of Greg's watch, but this is a legacy issue," said Tom Kellermann, chief cybersecurity officer at anti-virus software firm Trend Micro Inc. "They had an acting person who was juggling way too much, with no one fully dedicated to the role for a bit of time." 

JPMorgan, led by chief executive officer Jamie Dimon, 58, has rushed to determine the scope of the assault and restore confidence in security at the biggest US lender. While hackers targeted other banks' systems, JPMorgan is the only bank said to have had gigabytes of data stolen, including information on customer accounts. 

The breach went undetected until mid-August, months after hackers initially exploited a flaw in the company's website to gain entry to internal systems, people familiar with the firm's review have said. Investigators believe the stolen files ended up in a Russian data center, the people said. 

The bank hasn't seen elevated levels of fraud, said Patricia Wexler, a JPMorgan spokeswoman. She declined to comment further or make Rattray, 51, available for an interview.

No comments:

Post a Comment

Translate