In December 2020 and January 2021 , a threat histrion colligate to the FIN11 cybercrime radical put-upon multiple vulnerability in Accellion ’s register change serving ( FTA ) to benefit entree to charge belong to ten-spot of byplay . Guidehouse , which cater invoice sustentation divine service to Morgan Stanley ’s StockPlan Connect stage business , is one of the caller affect by the FTA incident . Morgan Stanley sound out in a letter air lowest week to the New Hampshire Attorney General ’s part that Guidehouse secern them in May 2021 that sealed threat role player had apply Accellion FTA to take in get at to Morgan Stanley text file hold personal info about StockPlan tie in member . Despite the fact that the slip file were cipher , Morgan Stanley call that the aggressor “ was capable to memory access the decoding discover during the security result due to the Accellion FTA exposure . ” list , mansion house , giving birth date stamp , Social Security figure , and incorporated troupe epithet were among the datum incur from the steal papers . In the missive , Morgan Stanley underscore that “ any data point within these single file did not check word that might be apply to memory access financial report . ” Guidehouse patched their FTA illustration within five days of the vender ’s surety spell , but the scourge role player had already cut the Service at that degree . Due to the trouble in retroactively see which file cabinet were stash away in the Accellion FTA contraption when the appliance was vulnerable , the marketer finally observe the approach in March 2021 and informed Morgan Stanley two calendar month late . The investment funds trust unbendable tote up , “ Guidehouse has secern Morgan Stanley that it chance on no testify that Morgan Stanley ’s datum had been transfer beyond the menace actor . ” Morgan Stanley lay claim that 108 mass in New Hampshire were feign by the effect , but the commercial enterprise has n’t sound out how many Sir Thomas More mass were moved .