Stories
Slash Boxes
Comments

SoylentNews is people

Goldman Sachs: Google Blocked Access to Email Sent by Mistake

posted by n1 on Friday July 04 2014, @11:09PM   Printer-friendly
from the too-big-to-suffer-the-consequences dept.

AnonTechie writes:

Reuters reports:

Goldman Sachs Group Inc said a contractor emailed confidential client data to a stranger's Gmail account by mistake, and the bank has asked a U.S. judge to order Google Inc to delete the email to avert a "needless and massive" breach of privacy.

The breach occurred on June 23 and included "highly confidential brokerage account information," Goldman said in a complaint filed last Friday in a New York state court in Manhattan.

Ars Technica reports:

At the request of investment bank Goldman Sachs, Google has blocked access to a sensitive e-mail that the bank mistakenly sent to a random Gmail account. Google confirmed to Goldman Sachs that the e-mail had not yet been opened by the recipient, according to a report late Wednesday from Reuters.

The e-mail in question, filled with confidential brokerage account information, was accidentally sent to a gmail.com address instead of a gs.com address by a contractor on June 23. Goldman Sachs tried to contact the e-mail account holder and then got in touch with Google, which initially said it would not take action without a court order. Goldman Sachs then filed for such a court order in a New York state court.

 
This discussion has been archived. No new comments can be posted.
Goldman Sachs: Google Blocked Access to Email Sent by Mistake | Log In/Create an Account | Top | 7 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 1, Informative) by Anonymous Coward on Saturday July 05 2014, @12:11AM

    by Anonymous Coward on Saturday July 05 2014, @12:11AM (#64361)

    ...It's not even funny.

    End-to-end email encryption - But that requires an external
    program like PGP or GPG to do this and it is cumbersome and
    potentially error prone.

    In-house private https webmail system - Read your messages
    securely anywhere in the world with just an internet connection
    and a webbrowser. This is probably the best solution. Then
    send an SMS message to their cellphone to log in
    and check their messages in the webmail system. NO URL or
    email address is sent to avoid phishing.

    Call them up on the phone and ask them to come down
    to the office to meet and tell them the message in person.

    See, no security leaks in case the wrong party is contacted.

    However, this doesn't cover negligence or malice on the part
    of the operators of such systems for the benefits of their
    clients/customers.

    Starting Score:    0  points
    Moderation   +1  
       Informative=1, Total=1
    Extra 'Informative' Modifier   0  
    Total Score:   1  

  • (Score: 1, Interesting) by Anonymous Coward on Saturday July 05 2014, @01:14AM

    by Anonymous Coward on Saturday July 05 2014, @01:14AM (#64375)

    Or don't permit attachments: all files belong on a document sharing server that can enforce access restrictions (and provide collaboration tools). That would probably take a giant load off the e-mail servers too.