We use cookies to understand how you use our site and to improve your experience.
This includes personalizing content and advertising.
By pressing "Accept All" or closing out of this banner, you consent to the use of all cookies and similar technologies and the sharing of information they collect with third parties.
You can reject marketing cookies by pressing "Deny Optional," but we still use essential, performance, and functional cookies.
In addition, whether you "Accept All," Deny Optional," click the X or otherwise continue to use the site, you accept our Privacy Policy and Terms of Service, revised from time to time.
You are being directed to ZacksTrade, a division of LBMZ Securities and licensed broker-dealer. ZacksTrade and Zacks.com are separate companies. The web link between the two companies is not a solicitation or offer to invest in a particular security or type of security. ZacksTrade does not endorse or adopt any particular investment strategy, any analyst opinion/rating/report or any approach to evaluating individual securities.
If you wish to go to ZacksTrade, click OK. If you do not, click Cancel.
Morgan Stanley (MS) Agrees to Settle Charges on Customer Safety
Read MoreHide Full Article
Morgan Stanley (MS - Free Report) has agreed on a $6.5 million settlement with six state attorneys general, led by New York attorney general Letitia James. The firm’s U.S. wealth management business, earlier known as Morgan Stanley Smith Barney LLC, was charged with failing to protect customers’ personal information while shutting down two data centers in 2016.
MS was accused of negligence in properly decommissioning computers that contained unencrypted customer data.
According to the agreement released by attorney general James, “Morgan Stanley failed to decommission its computers and erase unencrypted data in certain computer devices that were later auctioned while still containing consumers’ personal information, including data belonging to 1.1 million New Yorkers”.
James stated, “No one should have their personal information auctioned off without their knowledge because a company failed to take basic steps to erase it before selling their old computers. Today’s agreement requires Morgan Stanley to bolster its cybersecurity so consumers will never again have to risk their personal data unintentionally being sold at an auction. Companies, big and small, must all take their responsibility to protect their customers’ data seriously, and if they do not, my office will take action”.
In one incident, MS hired a moving company with no experience in data destruction services to decommission thousands of hard drives and servers containing sensitive information of millions of customers. However, Morgan Stanley failed to properly monitor the company’s work, and its computer equipment, some of which still contained private consumer information, was then sold at auction.
In another incident, during a decommissioning process, MS found that 42 servers, all potentially containing unencrypted customer information, were missing. During the process, it learned that local devices being decommissioned may have contained unencrypted data due to a manufacturer flaw in the encryption software. Because Morgan Stanley failed to maintain adequate vendor controls and hardware inventories, data security events could not be prevented.
Per the settlement agreement, New York will receive a little over $1.6 million. The remaining will be settled with the states of Connecticut, Florida, Indiana, New Jersey and Vermont.
Further, Morgan Stanley has agreed to adopt a series of steps to strengthen its data security measures This includes encrypting all personal information, whether stored or transmitted, between documents, databases and elsewhere; maintaining an incident response plan that documents incidents and responses; and keeping a vendor risk assessment team, among other provisions.
Over the past six months, shares of MS have lost 5.7% against the industry’s growth of 2.2%.
A few months ago, Goldman Sachs (GS - Free Report) agreed to pay $6 million to Securities and Exchange Commission (SEC) for not providing complete and accurate information in the blue sheets. It contained information regarding securities trading and transactions that were provided to various regulatory authorities.
Per SEC’s findings, GS made more than 22,000 inadequate blue sheet submissions between 2012 and 2022, comprising 43 different types of errors that affected more than 163 million transactions.
SEC stated that GS did not have adequate processes that could verify the accuracy of its electronic blue sheet submissions. Moreover, per SEC, Goldman knowingly violated the recordkeeping and reporting provisions of the federal securities laws.
Hence, GS agreed to pay the fine levied on it. Also, it has undertaken remedial actions to rectify and improve the reporting systems and controls of the blue sheet submissions.
Likewise, Washington Trust Bancorp, Inc.’s (WASH - Free Report) wholly-owned subsidiary, The Washington Trust Company, agreed on a settlement with the U.S. Department of Justice to resolve allegations that Washington Trust violated fair lending laws in Rhode Island between 2016 and 2021.
Washington Trust was required to provide $7 million in mortgage loan subsidies for mortgage, home improvement or refinance loans in specific census tracts in Rhode Island over five years.
Also, the company had to commit $2 million for focused community outreach and marketing efforts.
The settlement did not include any civil monetary penalties.
See More Zacks Research for These Tickers
Normally $25 each - click below to receive one report FREE:
Image: Bigstock
Morgan Stanley (MS) Agrees to Settle Charges on Customer Safety
Morgan Stanley (MS - Free Report) has agreed on a $6.5 million settlement with six state attorneys general, led by New York attorney general Letitia James. The firm’s U.S. wealth management business, earlier known as Morgan Stanley Smith Barney LLC, was charged with failing to protect customers’ personal information while shutting down two data centers in 2016.
MS was accused of negligence in properly decommissioning computers that contained unencrypted customer data.
According to the agreement released by attorney general James, “Morgan Stanley failed to decommission its computers and erase unencrypted data in certain computer devices that were later auctioned while still containing consumers’ personal information, including data belonging to 1.1 million New Yorkers”.
James stated, “No one should have their personal information auctioned off without their knowledge because a company failed to take basic steps to erase it before selling their old computers. Today’s agreement requires Morgan Stanley to bolster its cybersecurity so consumers will never again have to risk their personal data unintentionally being sold at an auction. Companies, big and small, must all take their responsibility to protect their customers’ data seriously, and if they do not, my office will take action”.
In one incident, MS hired a moving company with no experience in data destruction services to decommission thousands of hard drives and servers containing sensitive information of millions of customers. However, Morgan Stanley failed to properly monitor the company’s work, and its computer equipment, some of which still contained private consumer information, was then sold at auction.
In another incident, during a decommissioning process, MS found that 42 servers, all potentially containing unencrypted customer information, were missing. During the process, it learned that local devices being decommissioned may have contained unencrypted data due to a manufacturer flaw in the encryption software. Because Morgan Stanley failed to maintain adequate vendor controls and hardware inventories, data security events could not be prevented.
Per the settlement agreement, New York will receive a little over $1.6 million. The remaining will be settled with the states of Connecticut, Florida, Indiana, New Jersey and Vermont.
Further, Morgan Stanley has agreed to adopt a series of steps to strengthen its data security measures This includes encrypting all personal information, whether stored or transmitted, between documents, databases and elsewhere; maintaining an incident response plan that documents incidents and responses; and keeping a vendor risk assessment team, among other provisions.
Over the past six months, shares of MS have lost 5.7% against the industry’s growth of 2.2%.
Image Source: Zacks Investment Research
Currently, Morgan Stanley carries a Zacks Rank #3 (Hold). You can see the complete list of today’s Zacks #1 Rank (Strong Buy) stocks here.
Legal Issues of Other Finance Companies
A few months ago, Goldman Sachs (GS - Free Report) agreed to pay $6 million to Securities and Exchange Commission (SEC) for not providing complete and accurate information in the blue sheets. It contained information regarding securities trading and transactions that were provided to various regulatory authorities.
Per SEC’s findings, GS made more than 22,000 inadequate blue sheet submissions between 2012 and 2022, comprising 43 different types of errors that affected more than 163 million transactions.
SEC stated that GS did not have adequate processes that could verify the accuracy of its electronic blue sheet submissions. Moreover, per SEC, Goldman knowingly violated the recordkeeping and reporting provisions of the federal securities laws.
Hence, GS agreed to pay the fine levied on it. Also, it has undertaken remedial actions to rectify and improve the reporting systems and controls of the blue sheet submissions.
Likewise, Washington Trust Bancorp, Inc.’s (WASH - Free Report) wholly-owned subsidiary, The Washington Trust Company, agreed on a settlement with the U.S. Department of Justice to resolve allegations that Washington Trust violated fair lending laws in Rhode Island between 2016 and 2021.
Washington Trust was required to provide $7 million in mortgage loan subsidies for mortgage, home improvement or refinance loans in specific census tracts in Rhode Island over five years.
Also, the company had to commit $2 million for focused community outreach and marketing efforts.
The settlement did not include any civil monetary penalties.