NexusFi: Find Your Edge


Home Menu

 





AMP Trading data breach (70 gigs, ~100k files - customer data)


Discussion in Brokers

Updated
      Top Posters
    1. looks_one Big Mike with 9 posts (30 thanks)
    2. looks_two xplorer with 7 posts (5 thanks)
    3. looks_3 samsin78626 with 5 posts (0 thanks)
    4. looks_4 DeliberatingDinos with 4 posts (2 thanks)
      Best Posters
    1. looks_one Jigsaw Trading with 5 thanks per post
    2. looks_two Big Mike with 3.3 thanks per post
    3. looks_3 mattz with 3 thanks per post
    4. looks_4 rleplae with 3 thanks per post
    1. trending_up 29,431 views
    2. thumb_up 69 thanks given
    3. group 23 followers
    1. forum 54 posts
    2. attach_file 1 attachments




 
Search this Thread

AMP Trading data breach (70 gigs, ~100k files - customer data)

  #21 (permalink)
 
sam028's Avatar
 sam028 
Site Moderator
 
Posts: 3,765 since Jun 2009
Thanks Given: 3,825
Thanks Received: 4,629


xplorer View Post
...

I would have thought that this is in AMP's court, for them to engage a cybersecurity firm to understand what, if anything, was downloaded.

Hard to know I think, if the data were initially on the dark web (Tor network) and then pushed outside.

The blog post from the security researcher was April 24th, clients were informed 4 days later, not very fast...

Success requires no deodorant! (Sun Tzu)
Follow me on Twitter Reply With Quote
Thanked by:

Can you help answer these questions
from other members on NexusFi?
My NT8 Volume Profile Split by Asian/Euro/Open
NinjaTrader
The space time continuum and the dynamics of a financial …
Emini and Emicro Index
Futures True Range Report
The Elite Circle
ZombieSqueeze
Platforms and Indicators
New Micros: Ultra 10-Year & Ultra T-Bond -- Live Now
Treasury Notes and Bonds
 
Best Threads (Most Thanked)
in the last 7 days on NexusFi
Get funded firms 2023/2024 - Any recommendations or word …
61 thanks
Funded Trader platforms
39 thanks
NexusFi site changelog and issues/problem reporting
26 thanks
The Program
18 thanks
GFIs1 1 DAX trade per day journal
18 thanks
  #22 (permalink)
 trystanj 
Alicante Spain
 
Experience: Intermediate
Platform: NinjaTrader
Trading: ZW, ZS, ZC
Posts: 4 since Dec 2013
Thanks Given: 6
Thanks Received: 3


DeliberatingDinos View Post
I agree that commercial common sense here is of prime importance. What this breach shows more than anything else is AMP's attitude about data security. What is worth highlighting is that this kind of breach of this kind of unprotected sensitive data does not occur by mere negligence; it's enabled because of a complete disregard and lack of care about even basic security. This breach doesn't just show that AMP made a mistake; it shows that they must not have given the slightest care to data security; not the slightest care. I would not want to do business with a broker that had that kind of attitude about my sensitive data, no matter how much they apologize or mend their ways.

I agree absolutely. It shows their utter contempt towards their retail customers and security.

Reply With Quote
  #23 (permalink)
 
samsin78626's Avatar
 samsin78626 
Georgetown, TX/USA
 
Experience: Intermediate
Platform: Ninja Trader
Broker: Ninja Trader/EQG
Trading: Emini ES, Crude CL, NQ
Posts: 6 since Jul 2015
Thanks Given: 17
Thanks Received: 1


I emailed AMP about the breach and there reply was "At this time, AMP is confident that there are no vulnerabilities on any of our servers.". So I replied with "I'm sure there aren't now, what about the past, was there a breach? Please answer yes or no.". They replied "No"

So, was there a breach and they are covering it up or did it not happen?

Reply With Quote
  #24 (permalink)
 DeliberatingDinos 
Seattle, Washington
 
Experience: Intermediate
Platform: Jigsaw; Custom tool; ToS
Broker: Stage5
Trading: ES, RT, NQ
Posts: 21 since Nov 2016
Thanks Given: 14
Thanks Received: 26


samsin89143 View Post
I emailed AMP about the breach and there reply was "At this time, AMP is confident that there are no vulnerabilities on any of our servers.". So I replied with "I'm sure there aren't now, what about the past, was there a breach? Please answer yes or no.". They replied "No"

So, was there a breach and they are covering it up or did it not happen?

No server is invulnerable, no fortress is impenetrable, and no ship is unsinkable. Anybody holding sensitive data needs to understand this, and take reasonable steps in light of what they're storing to protect it. You don't stop at trying to make the container impenetrable, you also encrypt the contents.

Reply With Quote
Thanked by:
  #25 (permalink)
Three1seventy
Chicago USA
 
Posts: 15 since Jun 2011
Thanks Given: 2
Thanks Received: 7

AMP Global Clearing, LLC (AMP) is sending you this notice to keep you updated about your data on our servers. We were recently approached by a Cybersecurity research company with a claim that they had discovered a vulnerability in one of our back-up file storage server.

AMP responded by working with its IT service providers to ensure all vulnerabilities were eliminated in that server. The Cybersecurity research company then confirmed that the vulnerability had been resolved.

We have worked with the Cybersecurity research company, to ensure that all proper steps were taken to safeguard our customers’ information.

We are in direct communication with this Cybersecurity Company and our regulatory agencies. They have confirmed the files they accessed are currently encrypted, pending the instructions of the SEC.

From our understanding, this company’s mission is to make the cyber world safer by educating businesses and communities worldwide, with the goal of helping to protect data, identifying data leaks and following responsible disclosure policy.

At this time, AMP is confident that there are no vulnerabilities on any of our servers.

If you have any questions or concerns, please feel free to reach out to our customer service representative https://www.ampfutures.com/contact-us/

Reply With Quote
  #26 (permalink)
 
samsin78626's Avatar
 samsin78626 
Georgetown, TX/USA
 
Experience: Intermediate
Platform: Ninja Trader
Broker: Ninja Trader/EQG
Trading: Emini ES, Crude CL, NQ
Posts: 6 since Jul 2015
Thanks Given: 17
Thanks Received: 1


DeliberatingDinos View Post
No server is invulnerable, no fortress is impenetrable, and no ship is unsinkable. Anybody holding sensitive data needs to understand this, and take reasonable steps in light of what they're storing to protect it. You don't stop at trying to make the container impenetrable, you also encrypt the contents.

I totally agree. But replying the way they did only increases their liability on this manner. Is it possible that this is a competitor trying to bring them down?

Reply With Quote
  #27 (permalink)
 SilverFut 
Brisbane + Queensland/Australia
 
Experience: Beginner
Platform: NinjaTrader, Sierra Chart
Broker: CQG, IQFeed
Trading: S&P Emini Futures
Posts: 54 since Mar 2015
Thanks Given: 38
Thanks Received: 89


sam028 View Post
Hard to know I think, if the data were initially on the dark web (Tor network) and then pushed outside.

The blog post from the security researcher was April 24th, clients were informed 4 days later, not very fast...

Wouldn't they want to secure first before going public so its not a free for all for every malicious hacker who would then publicly know the door was open.....

IF it has been accessed prior to this researcher, they would want check that before every other wannabe hacker started poking around due to a public broadcast of a flaw I would think. Fastest way to get out a major (or minor) security flaw would be to tell the customers who it affects who then go asking for more details on forums/chats and so on and in the process, inadvertently disseminate the exploit for hackers to then attack. Its a hard line to walk, on the one hand, the customer EXPECTS transparency but the other hand they also expect to be protected and have exposure limited if possible.

AMP is damned if they do and damned if they don't....

Hopefully they found a path to limit customer exposure AND let customer know as soon as the security flaw was no longer able to be exploited. 4 days kind of sucks but at least AMP seem to be retroactively trying to fix this issue when its highlighted to them. Should have been a proactive approach though........... That's just good business when dealing with data security. Some serious talks need to be had with their 3rd party provider of that service but at the end of the day, the buck stops with AMP to ENSURE compliance. At the very minimum if they outsourced it because of not having the necessary skills in-house, they should have another party periodically audit and check the compliance of that 3rd party.

Of interest is the researchers claim he has found "other" security flaws within this sector recently....... Would be interesting to see what other brokers (if any) or associated companies with such personal details on file, have also left customer data exposed but have chosen to keep it on the dl from customers.




I dare say that AMP is having some serious discussions right now with outside professionals about mapping a path forward that strongly protects customers data so as to try and claw back customers trust.

Looks like AMP actually retained a 3rd party to ensure compliance in this area but sadly seems that 3rd party didn't have anyone auditing or checking how good they actually were at doing that job.......

Reply With Quote
  #28 (permalink)
 
xplorer's Avatar
 xplorer 
London UK
Site Moderator
 
Experience: Beginner
Platform: CQG
Broker: S5
Trading: Futures
Posts: 5,944 since Sep 2015
Thanks Given: 15,447
Thanks Received: 15,291


sam028 View Post
The blog post from the security researcher was April 24th, clients were informed 4 days later, not very fast...

That's when the researcher found the vulnerability. The article does not say how long the data had been available.

Reply With Quote
Thanked by:
  #29 (permalink)
 
samsin78626's Avatar
 samsin78626 
Georgetown, TX/USA
 
Experience: Intermediate
Platform: Ninja Trader
Broker: Ninja Trader/EQG
Trading: Emini ES, Crude CL, NQ
Posts: 6 since Jul 2015
Thanks Given: 17
Thanks Received: 1

I am an AMP customer and today is the first I have heard of this. I never received anything from AMP. Are there AMP customers here who have been notified of a breach? Or were only customers that potentially affected contacted?

Reply With Quote
  #30 (permalink)
 DeliberatingDinos 
Seattle, Washington
 
Experience: Intermediate
Platform: Jigsaw; Custom tool; ToS
Broker: Stage5
Trading: ES, RT, NQ
Posts: 21 since Nov 2016
Thanks Given: 14
Thanks Received: 26



samsin89143 View Post
I totally agree. But replying the way they did only increases their liability on this manner. Is it possible that this is a competitor trying to bring them down?

Unlikely.

1. Never attribute to malice......
2. Civil liability for data breaches, at least in the US, is basically a joke (as far as a client/victim suing is concerned). In a nutshell, you have to prove that your identity was stolen and that it harmed you, and that the thief used what was stolen from breached company. It's incredibly hard to prove, and the payout even with a win is unlikely to be worth the cost. Also, assume that class actions were agreed away, so there's not really any meaningful remedy beyond talking with your wallet. The lack of a meaningful remedy correlates with consequences; few consequences = [ ]. It's a disturbing state of affairs...

Reply With Quote
Thanked by:




Last Updated on May 31, 2018


© 2024 NexusFi™, s.a., All Rights Reserved.
Av Ricardo J. Alfaro, Century Tower, Panama City, Panama, Ph: +507 833-9432 (Panama and Intl), +1 888-312-3001 (USA and Canada)
All information is for educational use only and is not investment advice. There is a substantial risk of loss in trading commodity futures, stocks, options and foreign exchange products. Past performance is not indicative of future results.
About Us - Contact Us - Site Rules, Acceptable Use, and Terms and Conditions - Privacy Policy - Downloads - Top
no new posts