Berkeley CSUA MOTD:Entry 49013
Berkeley CSUA MOTD
 
WIKI | FAQ | Tech FAQ
http://csua.com/feed/
2024/12/25 [General] UID:1000 Activity:popular
12/25   

2008/1/25-2/2 [Computer/SW/Security] UID:49013 Activity:nil
1/25    Societe Generale uncovers massive fraud - Yahoo! News:
        http://www.csua.org/u/kkq
        After reading the whole article, I still don't understand how the fraud
        worked.
        \_ You mean you're supposed to understand anything by reading
           Yahoo! News?
           \_ It's an AP story.
2024/12/25 [General] UID:1000 Activity:popular
12/25   

You may also be interested in these entries...
2012/8/26-11/7 [Computer/SW/Security] UID:54465 Activity:nil
8/26    Poll: how many of you pub/priv key users: 1) use private keys that
        are not password protected 2) password protect your private keys
        but don't use ssh-agent 3) use ssh-agent:
        1) .
        2) ..
        3) ...
	...
2012/8/7-10/17 [Computer/SW/Security] UID:54455 Activity:nil
8/6     Amazon and Apple have lame security policies:
        http://www.wired.com/gadgetlab/2012/08/apple-amazon-mat-honan-hacking/all
        "First you call Amazon and tell them you are the account holder, and
         want to add a credit card number to the account. All you need is the
         name on the account, an associated e-mail address, and the billing
         address. "
	...
2012/7/18-8/19 [Health/Men, Computer/SW/Security] UID:54438 Activity:nil
7/18    "Largest penis record holder arouses security suspicions at airport"
        http://www.csua.org/u/x2f (in.news.yahoo.com)
        \_ I often have that same problem.
        \_ I think the headline writer had some fun with that one.
           \_ One time when I glanced over a Yahoo News headline "U.S. busts
              largest-ever identity theft ring" all I saw was "U.S. busts
	...
2012/4/23-6/1 [Computer/SW/WWW/Browsers] UID:54360 Activity:nil
4/19    My Firefox 3.6.28 pops up a Software Update box that reads "Your
        version of Firefox will soon be vulnerable to online attacks."  Are
        they planning to turn off some security feature in my version of
        Firefox?
        \_ Not as such, no, but they're no longer developing this version,
           so if a 3.6.x-targeted hack shows up, you're not going to get
	...
2011/11/8-30 [Computer/SW/Security, Computer/SW/OS/Windows] UID:54218 Activity:nil
11/8    ObM$Sucks
        http://technet.microsoft.com/en-us/security/bulletin/ms11-083
        \_ How is this different from the hundreds of other M$ security
           vulnerabilities that people have been finding?
           \_ "The vulnerability could allow remote code execution if an
               attacker sends a continuous flow of specially crafted UDP
	...
2011/11/11-30 [Computer/SW/Security] UID:54224 Activity:nil
11/11   MacOSX's Sandbox security hole:
        http://preview.tinyurl.com/7ph2wtg [arstechnica]
	...
Cache (5246 bytes)
www.csua.org/u/kkq -> news.yahoo.com/s/ap/20080124/ap_on_bi_ge/france_societe_generale_fraud
jUWTVvr83xETQI4VvxB _RTfow0eae8AADPrP/B=Zb_rCNGDJHg-/J=1201306560888524/A=4919452/R=0/* CEO Daniel Bouton said the trader's motivations were "irrational," netting the trader no personal financial gains. Still, the bank is seeking to have him prosecuted in court. A person familiar with the case named the trader as Jerome Kerviel. Bank officials said the trader was a Frenchman in his 30s who probably acted alone. The person spoke on condition of anonymity because of the sensitivity of the case. The bombshell destabilized a major bank already exposed to the subprime crisis. Societe Generale filed a complaint Thursday with a court in Nanterre, west of Paris, accusing the trader of fraudulent falsification of banking records, use of such records and computer fraud, the bank said in a statement. The Paris prosecutor opened a preliminary investigation Thursday based on a complaint filed by a small shareholder concerned about losses incurred because of the fraud, a judicial official said. The Bank of France, the country's central bank, said it was immediately informed of the fraud and was investigating. The bank said it detected the fraud -- comparable to a full year of its profits in stable times -- at its French markets division the weekend of Jan. Once uncovered, Bouton said the bank alerted market regulators and moved immediately to close the trader's positions, incurring heavy losses amid sharp declines on world markets. "This is a bad time for banks and the industry in general. But detecting the fraud over the weekend was problematic because world stock markets on Monday and Tuesday fell hugely around the world. When the positions had to be unwound, the bank did that in a terrible market of falling equities," said Janine Dow, senior director at Fitch Ratings financial institution group in Paris "In hindsight, it was this guy's superior knowledge of the control system of every aspect of trading at the bank that allowed him to build up fraudulent positions and hide them," she said. The bank said the trader had misled investors in 2007 and 2008 through a "scheme of elaborate fictitious transactions." The trader, who was not named, used his knowledge of the group's security systems to conceal his fraudulent positions, the statement said. The man admitted to the fraud, the bank said, and was being dismissed. Four or five of his supervisors were to leave the group. The trader had worked for the bank since 2000 and earned a salary and bonus of less than euro100,000 (US$145,700), executives said. "I'm convinced he acted alone," said Jean-Pierre Mustier, chief executive of the bank's corporate and investment banking, who interviewed the trader when the fraud was uncovered. The trader was responsible for basic futures hedging on European equity market indexes, the company said. That means he made bets on how the markets would perform at a future date. Until last year, the trader had been betting that markets would fall, but then changed his position at the start of this year to bet they would rise, said Kinner Lakhani, an analyst at ABN Amro in London who specializes in Societe Generale shares, citing the bank's management. He said there had been "daily rumors" this week that something was afoot at Societe Generale. Because the trader previously had worked in trading accounting offices, "he would have known how the risk management worked," Lakhani added. In a conference call with analysts on Thursday, bank officials "talked about this guy bypassing systems and setting up false counter-trades." Societe Generale said the trader was involved in "plain vanilla" forms of hedging. Futures trading began with selling commodities like sugar or oil to be delivered at a future date, but has expanded enormously to many kinds of extremely complex financial instruments. The fraud appeared to be the largest ever by a single trader. If confirmed, it would far outstrip the Nick Leeson trading scandal in 1995 that forced the collapse of British bank Barings. The company had been in business for more than 230 years. The fraud was not as big as the 1991 scandal that led to the demise of the Bank of Credit and Commerce International. Claims by depositors and creditors there exceeded US$10 billion at the time. International bank regulators seized BCCI, which had headquarters in Luxembourg, London and the Cayman Islands, acting on auditors' reports that described huge losses from illegal loans to corporate insiders and from trading transactions. Axel Pierron, senior analyst at Celent, an international financial research and consulting firm, was stunned that 13 years after the Barings collapse, something similar has happened. "The situation reveals that banks, despite the implementation of sophisticated risk management solutions, are still under the threat that an employee with a good understanding of the risk management processes can getting round them to hide his losses," he said. The bank is now planning a capital hike in the "following weeks" by selling shares in a rights offer underwritten by JPMorgan Chase & Co. The information contained in the AP News report may not be published, broadcast, rewritten or redistributed without the prior written authority of The Associated Press.