American Funds urges new client passwords over Heartbleed

Parent Capital Group says has no information indicating client accounts hacked

Apr 16, 2014 @ 3:02 pm

The Capital Group Cos., the third-largest manager of U.S. mutual funds, urged 800,000 customers to change account passwords and other information to protect themselves from risk caused by the Heartbleed computer bug.

The bug may have exposed some customers who accessed their accounts on the website for the firm's American Funds mutual funds between Dec. 12 and April 14, said Chuck Freadhoff, a spokesman for the firm. The company Thursday recommended in an e-mail to those clients that they change their user information, password, security image and questions, and delete their browsing history and “cookies.”

(See also: 'Heartbleed' cybersecurity threat looms over advisers and clients)

“Through an outside vendor there was with Heartbleed a vulnerability that gave a view to information flowing through that vendor's servers,” Mr. Freadhoff said. “We are doing this out of an abundance of caution,” he said, adding that the company had no information indicating accounts had been accessed by hackers.

Heartbleed, which was recently discovered by technology researchers and made public on April 7, prompted security experts to urge consumers to change their Internet passwords, even as Google Inc., Facebook Inc. and large banks said they weren't affected. The bug can expose people to hacking of their passwords and other sensitive information.

PROGRAMMING ERROR

The Federal Financial Institutions Examination Council, made up of representatives from the Federal Reserve Board of Governors, the Consumer Financial Protection Bureau and other U.S. regulators, said last week that systems operating a widely used encryption technology called OpenSSL are at risk of being hacked.

The flaw stemming from a two-year-old programming mistake was discovered by researchers from Google and Codenomicon Ltd., a technology security firm based in Finland, and reported to OpenSSL, according to a blog post from Codenomicon. It isn't known whether malicious hackers were aware of the bug and exploiting it, the researchers wrote.

Bloomberg News reported April 11 that the National Security Agency knew about the bug for two years and made it part of its hacking toolkit for information gathering. The NSA has since denied that it knew of the bug before an April 7 report by the private security researchers.

Capital Group manages $1.3 trillion for clients, including $1.1 trillion in its American Funds lineup, according to the company and data compiled by research firm Morningstar Inc. Only The Vanguard Group Inc.and Fidelity Investments oversee more in mutual funds.

Capital Group's largest fund is the $138 billion Growth Fund of America, according to data compiled by Bloomberg. The firm operates more than 50 million shareholder accounts, Mr. Freadhoff said.

(Bloomberg News)

0
Comments

What do you think?

View comments

Recommended for you

Featured video

Events

Vanderbilt's Distante: Storytelling and ESG Investing

Many investors and advisers want to make a difference with their investments. This means ESG investing is about telling the right stories to the right investors who want to make a difference. Vanderbilt's Stephen Distante, offers his perspective.

Video Spotlight

Help Clients Be Prepared, Not Surprised

Sponsored by Prudential

Recommended Video

Path to growth

Latest news & opinion

Brace for steepest rate hikes since 2006 in new year

Citigroup, JPMorgan Chase predict average interest rates across advanced economies will climb to at least 1 percent in 2018.

Why private equity wants a piece of the RIA market

Several factors, including consolidation in the independent advice industry and PE's own growing mountain of cash, are fueling the zeal to invest.

Finra bars former UBS rep for private securities transactions

Regulator says Kenneth Tyrrell engaged in undisclosed trades worth $13 million.

Stripped of fat commissions, nontraded REIT sales tank

The "income, diversify and interest rate" pitch was never the main draw for brokers.

Morgan Stanley fires former Congressman Harold Ford for misconduct

Allegations against the wirehouse's former managing director include sexual harassment, which Ford denies.

X

Subscribe and Save 60%

Premium Access
Print + Digital

Learn more
Subscribe to Print