NexusFi: Find Your Edge


Home Menu

 





AMP Trading data breach (70 gigs, ~100k files - customer data)


Discussion in Brokers

Updated
      Top Posters
    1. looks_one Big Mike with 9 posts (30 thanks)
    2. looks_two xplorer with 7 posts (5 thanks)
    3. looks_3 samsin78626 with 5 posts (0 thanks)
    4. looks_4 DeliberatingDinos with 4 posts (2 thanks)
      Best Posters
    1. looks_one Jigsaw Trading with 5 thanks per post
    2. looks_two Big Mike with 3.3 thanks per post
    3. looks_3 mattz with 3 thanks per post
    4. looks_4 rleplae with 3 thanks per post
    1. trending_up 29,414 views
    2. thumb_up 69 thanks given
    3. group 23 followers
    1. forum 54 posts
    2. attach_file 1 attachments




 
Search this Thread

AMP Trading data breach (70 gigs, ~100k files - customer data)

  #31 (permalink)
 steve2222 
Auckland, New Zealand
 
Experience: Beginner
Platform: Sierra Chart
Broker: AMP/CQG
Trading: Whatever moves in my timezone
Posts: 1,896 since Sep 2009
Thanks Given: 3,379
Thanks Received: 1,540


samsin89143 View Post
I am an AMP customer and today is the first I have heard of this. I never received anything from AMP. Are there AMP customers here who have been notified of a breach? Or were only customers that potentially affected contacted?

I got the email referred to in post #25

Prediction is very difficult, especially about the future - Niels Bohr, Danish Physicist
Reply With Quote

Can you help answer these questions
from other members on NexusFi?
New Micros: Ultra 10-Year & Ultra T-Bond -- Live Now
Treasury Notes and Bonds
Exit Strategy
NinjaTrader
Better Renko Gaps
The Elite Circle
My NT8 Volume Profile Split by Asian/Euro/Open
NinjaTrader
NexusFi Journal Challenge - April 2024
Feedback and Announcements
 
Best Threads (Most Thanked)
in the last 7 days on NexusFi
Get funded firms 2023/2024 - Any recommendations or word …
61 thanks
Funded Trader platforms
39 thanks
NexusFi site changelog and issues/problem reporting
26 thanks
Battlestations: Show us your trading desks!
26 thanks
The Program
18 thanks
  #32 (permalink)
 
samsin78626's Avatar
 samsin78626 
Georgetown, TX/USA
 
Experience: Intermediate
Platform: Ninja Trader
Broker: Ninja Trader/EQG
Trading: Emini ES, Crude CL, NQ
Posts: 6 since Jul 2015
Thanks Given: 17
Thanks Received: 1


steve2222 View Post
I got the email referred to in post #25

Steve, when did you receive it?

Reply With Quote
  #33 (permalink)
 steve2222 
Auckland, New Zealand
 
Experience: Beginner
Platform: Sierra Chart
Broker: AMP/CQG
Trading: Whatever moves in my timezone
Posts: 1,896 since Sep 2009
Thanks Given: 3,379
Thanks Received: 1,540



samsin89143 View Post
Steve, when did you receive it?



1:38pm us et


Sent from my iPhone using futures.io

Prediction is very difficult, especially about the future - Niels Bohr, Danish Physicist
Reply With Quote
Thanked by:
  #34 (permalink)
 crossover 
Brussels Belgium
 
Experience: Intermediate
Platform: ninja
Frequency: Every few days
Duration: Minutes
Posts: 140 since Jun 2009
Thanks Given: 396
Thanks Received: 326

I did receive this mail today at 19.38 hours or 07.38 PM ( belgium time : GMT +1 )
in short at 01.38 PM EST time but i was not at home....just discovered it.
The only thing i did change in this mail i show is that i deleted my name.




Follow us on YouTube Follow us on Facebook Follow us on Google+ Follow us on Twitter

AMP Futures
Hi ( i deleted my name )

AMP Global Clearing, LLC (AMP) is sending you this notice to keep you updated about your data on our servers. We were recently approached by a Cybersecurity research company with a claim that they had discovered a vulnerability in one of our back-up file storage server.

AMP responded by working with its IT service providers to ensure all vulnerabilities were eliminated in that server. The Cybersecurity research company then confirmed that the vulnerability had been resolved.

We have worked with the Cybersecurity research company, to ensure that all proper steps were taken to safeguard our customers’ information.

We are in direct communication with this Cybersecurity Company and our regulatory agencies. They have confirmed the files they accessed are currently encrypted, pending the instructions of the SEC.

From our understanding, this company’s mission is to make the cyber world safer by educating businesses and communities worldwide, with the goal of helping to protect data, identifying data leaks and following responsible disclosure policy.

At this time, AMP is confident that there are no vulnerabilities on any of our servers.

If you have any questions or concerns, please feel free to reach out to our customer service representative https://www.ampfutures.com/contact-us/




Participate in discussions about Trading Platforms, Indicators, Building Automated Strategies and more. You will also find a listing of 3rd party add-on products for you to download.

Join in conversations with other traders - AMP Forum >>

Attend Live Webinars - View Schedule

Watch How to Videos - YouTube

For Real-Time Updates - Follow Us on Twitter - Facebook

AMP Futures 221 N LaSalle St 25th Floor Chicago, Illinois 60601 USA

Reply With Quote
Thanked by:
  #35 (permalink)
 
Heph333's Avatar
 Heph333 
Springfield, MO/USA
 
Experience: Advanced
Platform: Jigsaw
Broker: AMP CQG
Trading: ZN, ZB
Posts: 43 since Oct 2009
Thanks Given: 49
Thanks Received: 88

Well you can thank regulations... that's the only reason that they even have our most intimate personal data to begin with

Sent using the NexusFi mobile app

Follow me on Twitter Reply With Quote
Thanked by:
  #36 (permalink)
 
mattz's Avatar
 mattz   is a Vendor
 
Posts: 2,493 since Sep 2010
Thanks Given: 2,440
Thanks Received: 3,789


xplorer View Post
@mattz

Thanks Matt,


The paramount question that is going to be in each of their customers' mind is: "has my data been accessed by unauthorized parties"?

Yes, I agree and issues of security and identity theft should not be taken lightly. However, in my opinion, the company that exposed the vulnerabilities did not have the intention of distributing the data or any weaknesses they found.

I looked at the site of the company and they maintain a blog of vulnerabilities they expose within other companies while promoting the sale of their security software at the top navigation. I am not sure what to make of it.

Thank you,
Matt Z
Optimus Futures

There is a substantial risk of loss in futures trading. Past performance is not indicative of future results.

Trading futures and options involves substantial risk of loss and is not suitable for all investors. Past performance is not necessarily indicative of future results. You may lose more than your initial investment. All posts are opinions and do not claim to be facts. Please conduct your own due diligence. Use only Risk capital when trading Futures.
1 800 771 6748 local 561 367 8686 email [email protected]
Reply With Quote
Thanked by:
  #37 (permalink)
 
Big Mike's Avatar
 Big Mike 
Manta, Ecuador
Site Administrator
Developer
Swing Trader
 
Experience: Advanced
Platform: Custom solution
Broker: IBKR
Trading: Stocks & Futures
Frequency: Every few days
Duration: Weeks
Posts: 50,396 since Jun 2009
Thanks Given: 33,172
Thanks Received: 101,534


mattz View Post
Yes, I agree and issues of security and identity theft should not be taken lightly. However, in my opinion, the company that exposed the vulnerabilities did not have the intention of distributing the data or any weaknesses they found.

I looked at the site of the company and they maintain a blog of vulnerabilities they expose within other companies while promoting the sale of their security software at the top navigation. I am not sure what to make of it.

Thank you,
Matt Z
Optimus Futures

There is a substantial risk of loss in futures trading. Past performance is not indicative of future results.

And what about anyone that accessed the data but wasn't a white hat?

Sent using the NexusFi mobile app

We're here to help: just ask the community or contact our Help Desk

Quick Links: Change your Username or Register as a Vendor
Searching for trading reviews? Review this list
Lifetime Elite Membership: Sign-up for only $149 USD
Exclusive money saving offers from our Site Sponsors: Browse Offers
Report problems with the site: Using the NexusFi changelog thread
Follow me on Twitter Visit my NexusFi Trade Journal Started this thread Reply With Quote
  #38 (permalink)
 
Scalpguy's Avatar
 Scalpguy 
Helsinki, Finland
 
Experience: Advanced
Platform: SC and TWS
Broker: IB and AMP/CQG
Trading: ES, CL
Posts: 206 since Jul 2010
Thanks Given: 17
Thanks Received: 166


Three1seventy View Post
AMP Global Clearing, LLC (AMP) is sending you this notice to keep you updated about your data on our servers. We were recently approached by a Cybersecurity research company with a claim that they had discovered a vulnerability in one of our back-up file storage server.

AMP responded by working with its IT service providers to ensure all vulnerabilities were eliminated in that server. The Cybersecurity research company then confirmed that the vulnerability had been resolved.

We have worked with the Cybersecurity research company, to ensure that all proper steps were taken to safeguard our customers’ information.

We are in direct communication with this Cybersecurity Company and our regulatory agencies. They have confirmed the files they accessed are currently encrypted, pending the instructions of the SEC.

From our understanding, this company’s mission is to make the cyber world safer by educating businesses and communities worldwide, with the goal of helping to protect data, identifying data leaks and following responsible disclosure policy.

At this time, AMP is confident that there are no vulnerabilities on any of our servers.

If you have any questions or concerns, please feel free to reach out to our customer service representative https://www.ampfutures.com/contact-us/

I received this very same email BUT all the links in it are referring to a different and suspicious domain "http://t.hsms07.com". The email source code shows the return path for "@mail4.shared.hubspot.com". For me it seems the email is a phishing email and looks like somebody is allready using the breached data. AMP support has been informed.

Anybody else or is this just me ?

It takes nothing to be a Pig
Reply With Quote
  #39 (permalink)
 
xplorer's Avatar
 xplorer 
London UK
Site Moderator
 
Experience: Beginner
Platform: CQG
Broker: S5
Trading: Futures
Posts: 5,944 since Sep 2015
Thanks Given: 15,446
Thanks Received: 15,291


Scalpguy View Post
I received this very same email BUT all the links in it are referring to a different and suspicious domain "http://t.hsms07.com". The email source code shows the return path for "@mail4.shared.hubspot.com". For me it seems the email is a phishing email and looks like somebody is allready using the breached data. AMP support has been informed.

Anybody else or is this just me ?

By opening that URL you get this



It may be that they are using a distribution list service to send these emails. Most companies with a large audience do that nowadays.

If that's the case, it's nothing to worry about.

Reply With Quote
  #40 (permalink)
 
Scalpguy's Avatar
 Scalpguy 
Helsinki, Finland
 
Experience: Advanced
Platform: SC and TWS
Broker: IB and AMP/CQG
Trading: ES, CL
Posts: 206 since Jul 2010
Thanks Given: 17
Thanks Received: 166



xplorer View Post
By opening that URL you get this



It may be that they are using a distribution list service to send these emails. Most companies with a large audience do that nowadays.

If that's the case, it's nothing to worry about.

This can be the case.

btw. here is an example how the links were dubbed in the email. For example https://www.ampfutures.com/contact-us/ was as follows:

 
Code
http://t.hsms07.com/e1t/c/*W5RCcFZ8_ZwGVW1Clnh73YyNfZ0/*W5V-SYK7SsJZ1MZdHrKSJ5Pb0/5/f18dQhb0Sjvg8XJ8QKW97df7c2qwv2rW2sZTQD4cv8n_Mf598jXD6prW7cmS1s8pCQ6vW51LTfw61SR7mW6b-xmr96Ls9wW96dt4f7lVx7mW7dF4v91nrCGBW2nbXHC8XWrnGN5Lnv1TH9gtSW70QtF-8lwDm2W3H9V3Z2-J-SLW2z_tPY41Q2WgV-zgqs41TlcRW3Tx3Jb5SPLR0W5SQpfr63G2PgW8QKpyr4sj3hVW2BcyM91mGWmCW1pRNVj42zNhLW7z2px_4CSvHKW51jNgk74NxZRW24ZkBW8dd_qkW4rhF6b1cWxfLN4LZQphbGz5wW5cxmC_1n-5rsW6bCsWT2gD-ywW1m7kWY2gR3VwW7mrRf037d_g9W25DK4t86t1krW5Q56C06SSJNcVcb0gH3kYc04W4p7yDT2BPM3LW8nDLGX28bFMTW5ybPPX8t3ZKCW62lbWs2GD9D7W4b7mhz8NkSBmN2lb_N8pyTcPW4sHvgL863RHtW2td_Hw8Lfd-jW7D7Hxj1Dy_KCVFkVVN2H2jd80
I did not try that one because you newer know what happens

It takes nothing to be a Pig
Reply With Quote




Last Updated on May 31, 2018


© 2024 NexusFi™, s.a., All Rights Reserved.
Av Ricardo J. Alfaro, Century Tower, Panama City, Panama, Ph: +507 833-9432 (Panama and Intl), +1 888-312-3001 (USA and Canada)
All information is for educational use only and is not investment advice. There is a substantial risk of loss in trading commodity futures, stocks, options and foreign exchange products. Past performance is not indicative of future results.
About Us - Contact Us - Site Rules, Acceptable Use, and Terms and Conditions - Privacy Policy - Downloads - Top
no new posts