AMP Trading data breach (70 gigs, ~100k files - customer data) - Reviews of Brokers and Data Feeds | futures io social day trading
futures io futures trading


AMP Trading data breach (70 gigs, ~100k files - customer data)
Updated: Views / Replies:10,988 / 51
Created: by Big Mike Attachments:1

Welcome to futures io.

(If you already have an account, login at the top of the page)

futures io is the largest futures trading community on the planet, with over 90,000 members. At futures io, our goal has always been and always will be to create a friendly, positive, forward-thinking community where members can openly share and discuss everything the world of trading has to offer. The community is one of the friendliest you will find on any subject, with members going out of their way to help others. Some of the primary differences between futures io and other trading sites revolve around the standards of our community. Those standards include a code of conduct for our members, as well as extremely high standards that govern which partners we do business with, and which products or services we recommend to our members.

At futures io, our focus is on quality education. No hype, gimmicks, or secret sauce. The truth is: trading is hard. To succeed, you need to surround yourself with the right support system, educational content, and trading mentors Ė all of which you can find on futures io, utilizing our social trading environment.

With futures io, you can find honest trading reviews on brokers, trading rooms, indicator packages, trading strategies, and much more. Our trading review process is highly moderated to ensure that only genuine users are allowed, so you donít need to worry about fake reviews.

We are fundamentally different than most other trading sites:
  • We are here to help. Just let us know what you need.
  • We work extremely hard to keep things positive in our community.
  • We do not tolerate rude behavior, trolling, or vendors advertising in posts.
  • We firmly believe in and encourage sharing. The holy grail is within you, we can help you find it.
  • We expect our members to participate and become a part of the community. Help yourself by helping others.

You'll need to register in order to view the content of the threads and start contributing to our community.  It's free and simple.

-- Big Mike, Site Administrator

Reply
 1  
 
Thread Tools Search this Thread
 

AMP Trading data breach (70 gigs, ~100k files - customer data)

  #1 (permalink)
Site Administrator
Manta, Ecuador
 
Futures Experience: Advanced
Platform: My own custom solution
Favorite Futures: E-mini ES S&P 500
 
Big Mike's Avatar
 
Posts: 46,237 since Jun 2009
Thanks: 29,350 given, 83,150 received

AMP Trading data breach (70 gigs, ~100k files - customer data)

As reported by Chris Vickery

Source 1: https://mackeepersecurity.com/post/amp-trading-platform-breach

Source 2: https://www.dailydot.com/layer8/amp-trading-firm-data-breach/


Quoting 
Iíve come across several finance-related data breaches within the past few weeks, most recently involving the AMP Futures trading platform.

While the exact nature of the leak is nothing new, a third-party IT vendorís unsecured rsync backup device, the amount of money involved is on the large side. The files indicate that AMP has over $50 million on the books and additionally include the private details of over 10,000 account applicants.

The portion I downloaded comes to about 70 gigs and represents 97,000 different files. It includes credit reports, passport scans, internal company emails, customer chat logs, and basically everything an identity thief would need in order to mount a serious campaign. I was surprised at the number of plaintext customer passwords discussed in the chat logs (by staff and customers alike).

It took a few days for me to make contact with a real person at AMP. This is not entirely AMPís fault though, as companies related to the stock market close down for the Good Friday holiday, which is then followed by a weekend.

The head honcho over at AMP was surprised when I fully explained the situation to him over a phone call. He rightly wondered what AMP was paying its third-party IT company for. If a third party, which specializes in IT, canít catch this kind of leakage themselves, there is some serious improvement to be done.

AMPís CEO was relieved to hear that I wasnít trying to sell him anything or attempting any sort of blackmail or extortion, and Iím thankful he understood that I merely discovered the unsecured data rather than causing it to become unsecured. Thatís a distinction many people fail to grasp, especially when their company is potentially in the hot seat.


Quoting 
A data breach at an online futures trading brokerage left exposed thousands of files, including credit reports, passport scans, and customer chat logs.

The leak, now secured, was identified and reported by Chris Vickery of the Kromtech Security Research Team. It was caused by a misconfigured backup device managed by a third-party IT vendor.

The trading firm was identified as AMP, a company that offers numerous platforms for online futures trading. According to the Online Brokers Hub, the company is based in Chicago, Illinois.

While the issue with the backup system is not uncommon, the breach is notable for the amount of money that passes through AMPís systems. ďThe files indicate that AMP has over $50 million on the books and additionally include the private details of over 10,000 account applicants,Ē Kromtech reports.

Vickery reported that about 70GB of data had been sitting on the open web, consisting of roughly 97,000 files.

ďIt includes credit reports, passport scans, internal company emails, customer chat logs, and basically everything an identity thief would need in order to mount a serious campaign,Ē Vickery said. ďI was surprised at the number of plaintext customer passwords discussed in the chat logs (by staff and customers alike).Ē

Mike

Due to time constraints, please do not PM me if your question can be resolved or answered on the forum.

Need help?
1) Stop changing things. No new indicators, charts, or methods. Be consistent with what is in front of you first.
2) Start a journal and post to it daily with the trades you made to show your strengths and weaknesses.
3) Set goals for yourself to reach daily. Make them about how you trade, not how much money you make.
4) Accept responsibility for your actions. Stop looking elsewhere to explain away poor performance.
5) Where to start as a trader? Watch this webinar and read this thread for hundreds of questions and answers.
6)
Help using the forum? Watch this video to learn general tips on using the site.

If you want
to support our community, become an Elite Member.

Reply With Quote
The following 20 users say Thank You to Big Mike for this post:
 
  #2 (permalink)
Quick Summary
Quick Summary Post

Quick Summary is created and edited by users like you... Add FAQ's, Links and other Relevant Information by clicking the edit button in the lower right hand corner of this message.

 
  #3 (permalink)
Site Administrator
Manta, Ecuador
 
Futures Experience: Advanced
Platform: My own custom solution
Favorite Futures: E-mini ES S&P 500
 
Big Mike's Avatar
 
Posts: 46,237 since Jun 2009
Thanks: 29,350 given, 83,150 received


Please register on futures.io to view futures trading content such as post attachment(s), image(s), and screenshot(s).


Please register on futures.io to view futures trading content such as post attachment(s), image(s), and screenshot(s).


Mike

Due to time constraints, please do not PM me if your question can be resolved or answered on the forum.

Need help?
1) Stop changing things. No new indicators, charts, or methods. Be consistent with what is in front of you first.
2) Start a journal and post to it daily with the trades you made to show your strengths and weaknesses.
3) Set goals for yourself to reach daily. Make them about how you trade, not how much money you make.
4) Accept responsibility for your actions. Stop looking elsewhere to explain away poor performance.
5) Where to start as a trader? Watch this webinar and read this thread for hundreds of questions and answers.
6)
Help using the forum? Watch this video to learn general tips on using the site.

If you want
to support our community, become an Elite Member.

Reply With Quote
The following 2 users say Thank You to Big Mike for this post:
 
  #4 (permalink)
Site Administrator
Manta, Ecuador
 
Futures Experience: Advanced
Platform: My own custom solution
Favorite Futures: E-mini ES S&P 500
 
Big Mike's Avatar
 
Posts: 46,237 since Jun 2009
Thanks: 29,350 given, 83,150 received

Please register on futures.io to view futures trading content such as post attachment(s), image(s), and screenshot(s).


Please register on futures.io to view futures trading content such as post attachment(s), image(s), and screenshot(s).


Mike

Due to time constraints, please do not PM me if your question can be resolved or answered on the forum.

Need help?
1) Stop changing things. No new indicators, charts, or methods. Be consistent with what is in front of you first.
2) Start a journal and post to it daily with the trades you made to show your strengths and weaknesses.
3) Set goals for yourself to reach daily. Make them about how you trade, not how much money you make.
4) Accept responsibility for your actions. Stop looking elsewhere to explain away poor performance.
5) Where to start as a trader? Watch this webinar and read this thread for hundreds of questions and answers.
6)
Help using the forum? Watch this video to learn general tips on using the site.

If you want
to support our community, become an Elite Member.

Reply With Quote
 
  #5 (permalink)
Market Wizard
London UK
 
Futures Experience: Beginner
Platform: CQG
Favorite Futures: Futures
 
xplorer's Avatar
 
Posts: 2,992 since Sep 2015
Thanks: 6,432 given, 4,666 received
Forum Reputation: Legendary

Thanks Mike,

In an increasingly "digital" world it is to be somehow expected that data breaches are on the rise too.


Neither article however makes clear whether the leaked data had been stolen by a 3rd party or not before being secured.


Either way, this is not good publicity for AMP.

Reply With Quote
The following user says Thank You to xplorer for this post:
 
  #6 (permalink)
Site Administrator
Manta, Ecuador
 
Futures Experience: Advanced
Platform: My own custom solution
Favorite Futures: E-mini ES S&P 500
 
Big Mike's Avatar
 
Posts: 46,237 since Jun 2009
Thanks: 29,350 given, 83,150 received

"It includes credit reports, passport scans, internal company emails, customer chat logs, and basically everything an identity thief would need in order to mount a serious campaign."

"I was surprised at the number of plaintext customer passwords discussed in the chat logs (by staff and customers alike)."

(quoting the original author, Chris Vickery)

Mike

Due to time constraints, please do not PM me if your question can be resolved or answered on the forum.

Need help?
1) Stop changing things. No new indicators, charts, or methods. Be consistent with what is in front of you first.
2) Start a journal and post to it daily with the trades you made to show your strengths and weaknesses.
3) Set goals for yourself to reach daily. Make them about how you trade, not how much money you make.
4) Accept responsibility for your actions. Stop looking elsewhere to explain away poor performance.
5) Where to start as a trader? Watch this webinar and read this thread for hundreds of questions and answers.
6)
Help using the forum? Watch this video to learn general tips on using the site.

If you want
to support our community, become an Elite Member.

Reply With Quote
The following 2 users say Thank You to Big Mike for this post:
 
  #7 (permalink)
 Vendor: tradevelopers.com 
Madrid Spain
 
Futures Experience: Advanced
Platform: Ninjatrader Developers
Broker/Data: NinjaTrader Brokerage
Favorite Futures: NQ and CL
 
tradevelopers's Avatar
 
Posts: 29 since Jan 2013
Thanks: 1 given, 6 received

Some body knows if that info was posted ONLINE o r into deepweb?

Reply With Quote
 
  #8 (permalink)
Elite Member
Melbourne VIC Australia
 
Futures Experience: Intermediate
Platform: OEC
Favorite Futures: ES, SPI200, Bonds
 
neo2013's Avatar
 
Posts: 8 since Oct 2013
Thanks: 7 given, 2 received

I'd change password straight away

Reply With Quote
The following user says Thank You to neo2013 for this post:
 
  #9 (permalink)
Elite Member
Alicante Spain
 
Futures Experience: Intermediate
Platform: NinjaTrader
Favorite Futures: ZW, ZS, ZC
 
Posts: 4 since Dec 2013
Thanks: 6 given, 3 received

Why do these corporations, AMP, Sony et al continue to store our passwords and data in plain text and unencrypted? This is really sensitive info. Passport copies?! Seriously?

Reply With Quote
The following user says Thank You to trystanj for this post:
 
  #10 (permalink)
Market Wizard
Boca Raton
 
Futures Experience: Advanced
Platform: Variety
Broker/Data: Optimus Futures, LLC
Favorite Futures: Futures
 
mattz's Avatar
 
Posts: 2,042 since Sep 2010
Thanks: 1,912 given, 2,750 received
Forum Reputation: Legendary

Email going out to customers of AMP


Email going out to customers of AMP

Dear Customer,

AMP Global Clearing, LLC (AMP) is sending you this notice to keep you updated about your data on our servers. We were recently approached by a Cybersecurity research company with a claim that they had discovered a vulnerability in one of our back-up file storage server.

AMP responded by working with its IT service providers to ensure all vulnerabilities were eliminated in that server. The Cybersecurity research company then confirmed that the vulnerability had been resolved.

We have worked with the Cybersecurity research company, to ensure that all proper steps were taken to safeguard our customersí information.

We are in direct communication with this Cybersecurity Company and our regulatory agencies. They have confirmed the files they accessed are currently encrypted, pending the instructions of the SEC.

From our understanding, this companyís mission is to make the cyber world safer by educating businesses and communities worldwide, with the goal of helping to protect data, identifying data leaks and following responsible disclosure policy.

At this time, AMP is confident that there are no vulnerabilities on any of our servers. If you have any questions or concerns, please feel free to reach out to our customer service representative.

PM with any questions about optimusfutures (800) 771-6748 (561) 367 8686. THERE IS A SUBSTANTIAL RISK OF LOSS IN FUTURES TRADING.
Reply With Quote
The following 4 users say Thank You to mattz for this post:

Reply



futures io > > > > AMP Trading data breach (70 gigs, ~100k files - customer data)

Thread Tools Search this Thread
Search this Thread:

Advanced Search



Upcoming Webinars and Events (4:30PM ET unless noted)

Adam Grimes: TBA

Elite only

NinjaTrader: TBA

Dec 7

Linda Bradford Raschke: TBA

Elite only

Ran Aroussi: TBA

Elite only
     

Similar Threads
Thread Thread Starter Forum Replies Last Post
Anyone has ZN flat tick data files recorded ? supersunny The Elite Circle 5 August 20th, 2016 04:03 PM
Anyone has GC flat tick data files recorded ? supersunny The Elite Circle 1 August 2nd, 2016 12:10 PM
HOME DEPOT COVERING UP MASSIVE CREDIT CARD DATA BREACH kbit News and Current Events 0 September 2nd, 2014 09:05 PM
Hackers Steal Personal Data of 70 Million PlayStation Users Quick Summary News and Current Events 0 April 26th, 2011 08:00 PM
Best Data Provider to compliment Zen-Fire for Mkt Internals & EOD Data? waverider Reviews of Brokers and Data Feeds 17 October 14th, 2010 11:33 AM


All times are GMT -4. The time now is 12:17 PM.

Copyright © 2017 by futures io, s.a., Av Ricardo J. Alfaro, Century Tower, Panama, +507 833-9432, info@futures.io
All information is for educational use only and is not investment advice.
There is a substantial risk of loss in trading commodity futures, stocks, options and foreign exchange products. Past performance is not indicative of future results.
no new posts
Page generated 2017-11-19 in 0.11 seconds with 20 queries on phoenix via your IP 54.196.2.131