Click to Skip Ad
Closing in...

A simple security oversight was responsible for the massive JPMorgan Chase hack

December 24th, 2014 at 6:00 PM
JPMorgan Chase Hack

Earlier this year, JPMorgan Chase was the victim of a massive data breach, but the attack might have been avoided if the bank had installed a “simple” security fix, The New York Times reveals. Apparently, an unsecured server on the bank’s computer network was targeted by hackers, who then were able to steal personal data belonging to tens of millions of Americans.

FROM EARLIER: North Korea’s statement on the Sony hack is as hilariously insane as you’d expect

According to people familiar with the investigation, the financial institution might have been able to prevent the intrusion had it not been for a server that lacked a simple security feature most people are familiar with: Two-factor authentication.

After stealing credentials from a JPMorgan Chase employee, hackers were then able to access the bank’s computer network and gain high-level access to more than 90 bank servers. From there, hackers stole account information for 83 million households and businesses in the U.S.

The server used to infiltrate JPMorgan lacked the two-step authentication scheme, meaning that hackers did not have to obtain a second password in addition to the stolen login information to access the bank’s system.

Apparently, the simple vulnerability the hackers took advantage of surprised investigators, who initially believed a more complex hack was used to breach the system.

While not all details of this ongoing investigation have been revealed, it appears that a sophisticated zero day attack was not used in this data breach. The simple nature of the attack that ultimately defeated a security system costing JPMorgan some $250 million each year, also explains why other financial institutions that have two-factor authentication in place were not also hit.

Chris Smith started writing about gadgets as a hobby, and before he knew it he was sharing his views on tech stuff with readers around the world. Whenever he's not writing about gadgets he miserably fails to stay away from them, although he desperately tries. But that's not necessarily a bad thing.

Popular News