Hackers breach Davidson Companies client database

Share this article:
The Davidson Companies, a Montana-based financial-services firm, said this week that one of its databases, containing the names and Social Security numbers of 226,000 current and past clients, was illegally accessed "by a third party through a sophisticated network intrusion."

The Great Falls-based firm took its public website offline after learning of the intrusion, hired a security consulting firm to investigate the theft and notified the major credit-reporting bureaus after learning about the incident.

"Despite our efforts to safeguard client information, a computer hacker using sophisticated techniques illegally accessed a database and obtained access to confidential client information," said William Johnstone, Davidson president and chief executive officer, in the statement. "All of us at Davidson are acutely aware of the uncertainty, stress and inconvenience associated with the potential compromise of personal information. We are fully committed to helping our clients deal with this unfortunate event as quickly as possible and are adopting measures to further enhance our network security.”

The company reportedly hired a vulnerability-assessment company last September to assess its network-security posture. The consulting company did not find any vulnerabilities at that time.

Davidson spokeswoman Jacquie Burchard said the firm would not comment further on the incident, saying that “with the investigation ongoing, it would be inappropriate to delve into the technical aspects of the security breach.”

There is no evidence the individual who hacked into its database was able to affect client accounts, according to Davidson, which urged its customers to guard against fraud. The company said it plans to pay for a year of credit-monitoring service for those impacted.

Johnstone addressed a letter to Davidson customers, alerting them to toll free numbers for current and past customers.

Based in Great Falls, Mont., Davidson is an employee-owned holdings company with a number of subsidiaries within the financial industry; it also owns a travel agency.
Share this article:

Sign up to our newsletters

More in News

Research shows vulnerabilities go unfixed longer in ASP

Research shows vulnerabilities go unfixed longer in ASP

A new report finds little difference in the number of vulnerabilities among programming languages, but remediation times vary widely.

Bill would restrict Calif. retailers from storing certain payment data

The bill would ban businesses from storing sensitive payment data, for any long than required, even if it is encrypted.

Amplification, reflection DDoS attacks increase 35 percent in Q1 2014

Amplification, reflection DDoS attacks increase 35 percent in ...

The Q1 2014 Global DDoS Attack Report reveals that amplification and reflection distributed denial-of-service attacks are on the rise.