The biggest U.S. broker dealer exposes advisers' data

22.01.2019

Back to news

20 000 advisers’ details got exposed at BlackRock Inc. LPL Financial, one of the biggest U.S. broker dealers, has 12 000 people affected by the incident. According to the statement of BlackRock, the world's largest asset manager, the data was posted on the company’s website and promptly removed. The information which got compromised belongs to advisers who run business with iShares exchange traded funds unit. BlackRock dominates world’s ETF which makes ETF sales highly important to the company. The kind of information exposed and the depth of the breach are to be investigated.

“Protect your Tweets” setting has been keeping your tweets daringly public from November 3 2014 until January 14 2019 if you limited your audience choosing this option and used a Twitter app for Android. Twitter has also noted that it is difficult to identify the accounts which tweets got exposed.

An unprotected Elasticsearch instance storing millions of unprotected records was discovered on January 11th. AIESEC, the world’s largest youth-run organisation represented in 127 countries, was impacted. Public search engines indexed the compromised database. Emails, gender, names, details of about 4 million applications for AIESEC internships, interview information was affected. The organisation has informed the authorities conforming to GDPR requirements. Lack of authentication rendered Elasticsearch servers attackable. Who could gain an access to the data and for how long it was displayed is still to be determined.