Help

BI’s Article search uses Boolean search capabilities. If you are not familiar with these principles, here are some quick tips.

To search specifically for more than one word, put the search term in quotation marks. For example, “workers compensation”. This will limit your search to that combination of words.

To search for a combination of terms, use quotations and the & symbol. For example, “hurricane” & “loss”.

Login Register Subscribe

Ex-Morgan Stanley adviser pleads guilty in connection with data breach

Reprints

(Reuters) — A former Morgan Stanley financial adviser who was fired in connection with a major breach of client information pleaded guilty on Monday to taking confidential data for hundreds of thousands of customer accounts from a bank computer without permission.

Galen Marsh, who worked in Morgan Stanley’s private wealth management division, entered the plea in federal court in Manhattan, according to court records.

The hearing came nine months after the bank announced it had fired him in connection with a data breach that resulted in account information for hundreds of clients getting published online.

Mr. Marsh copied names, addresses, account numbers, investment information and other data for approximately 730,000 accounts, prosecutors said in court papers. While improperly accessing the client information, Mr. Marsh was in talks about landing a new job with two Morgan Stanley competitors, the documents said.

In January, Morgan Stanley said up to 10% of its approximately 3.5 million wealth management clients were affected.

The bank said in January that information from around 900 client accounts linked to the breach was briefly posted online.

But Mr. Marsh’s attorney, Robert Gottlieb, said on Monday his client never posted, sold or disclosed any of the data he took.

“The truth is that the Internet disclosures were the result of outside hackers, and he had absolutely nothing to do with it,” Mr. Gottlieb said, adding that he is hopeful Mr. Marsh will not be sentenced to any prison time.

Federal authorities are continuing to investigate other aspects of the breach, a source familiar with the matter told Reuters.

According to charging documents, Mr. Marsh, who began working at Morgan Stanley as a sales assistant in 2008, uploaded the account information to his home computer in New Jersey between 2011 and 2014.

No clients lost money as a result of the breach, Morgan Stanley said on Monday.

“This action, which follows Morgan Stanley’s initial investigation and reporting of his misconduct, makes clear that misuse of client account information will not be tolerated,” the bank said in a statement.

Mr. Marsh’s sentencing is scheduled for Dec. 7. As part of the plea deal, he has agreed not to appeal any prison sentence of 37 months or shorter.

“Today’s guilty plea should send a message to those who inappropriately obtain and mishandle sensitive information that such actions may not just be improper, they can also be criminal,” Federal Bureau of Investigation Assistant Director-in-Charge Diego Rodriguez said in a statement.

Read Next

  • Two charged in 2011 cyber breach at Michaels retailer

    (Reuters) — Two southern Californians were criminally charged over their alleged roles in a conspiracy to steal 94,000 credit and debit card numbers from Michaels Stores Inc. customers in a prominent 2011 cyber attack affecting the largest U.S. arts and crafts retailer.