Faulty Patch Freezes Millions of UK Bank Accounts

← Back to Stories (view on slashdot.org)

Faulty Patch Freezes Millions of UK Bank Accounts

Posted by timothy on Friday June 22, 2012 @03:31AM from the cuba-will-send-doctors dept.

frisket writes with news from The Register about ongoing problems for some UK banks: "'RBS and Natwest have failed to register inbound payments for up to three days, customers have reported, leaving people unable to pay for bills, travel and even food. The banks — both owned by RBS Group — have confirmed that technical glitches have left bank accounts displaying the wrong balances and certain services unavailable. There is no fix date available.' Customers of NatWest subsidiary Ulster Bank in Ireland have also been left without banking services. RTE reports that 'the problem had arisen within the systems of parent bank RBOS when an incorrect patch was applied.'"

38 of 155 comments (clear)

Min score:

Reason:

Sort:

Solution: by Cornwallis · 2012-06-22 03:34 · Score: 4, Funny

Where are those cleanmypc.com ads when you need them?
1. Re:Solution: by Anonymous Coward · 2012-06-22 05:59 · Score: 2, Informative
  
  STOP IT. Do not turn that in to a meme. You are rewarding them for spamming.
They outsourced their IT dept... by Anonymous Coward · 2012-06-22 03:39 · Score: 4, Insightful

... getting rid of all the expensive people with experience in the mainframe backend system...
1. Re:They outsourced their IT dept... by Anonymous Coward · 2012-06-22 04:06 · Score: 5, Informative
  
  A later commenter did: http://www.computerweekly.com/news/1280093677/Royal-Bank-of-Scotland-cuts-1000-IT-jobs
2. Re:They outsourced their IT dept... by kiwimate · 2012-06-22 04:07 · Score: 4, Informative
  
  I had the same question, and then saw this post further down, referencing this story from 2010 (which in turn points to another story discussing this as an ongoing strategy). Seems to have validity.
3. Re:They outsourced their IT dept... by cusco · 2012-06-22 07:19 · Score: 4, Insightful
  
  "Expensive" experienced people would know all the interdependencies among systems, for a start. The outsourced staff are quite likely to not know that System W has to be brought up before System Q, because System S needs to authenticate with W first before it can provide data to Q.
  
  And how much money do you think they're saving with their outsourced people today?
  
  --
  "Think about how stupid the average person is. Now, realise that half of them are dumber than that." - George Carlin
Aargh by Anonymous Coward · 2012-06-22 03:39 · Score: 4, Funny

I always mess up some mundane detail.
1. Re:Aargh by TheSpoom · 2012-06-22 03:51 · Score: 5, Funny
  
  This is not a mundane detail, Michael!
  
  --
  It's better to vote for what you want and not get it than to vote for what you don't want and get it.
  - E. Debs
it's obvious by Hognoxious · 2012-06-22 03:42 · Score: 2, Insightful

They're doing tests on locking down funds transfer & electronic payments systems. This is probably much harder than you'd think, because they're designed to, well, just work. A few weeks ago (5th June, to be precise) a similar thing happened in Belgium. Caused chaos on the railways.
If anyone thinks it isn't a rehearsal for when Greece drops out of the Euro then I've got a nice bridge for sale.

--
Confucius say, "Find worm in apple - bad. Find half a worm - worse."
1. Re:it's obvious by GNious · 2012-06-22 04:26 · Score: 4, Funny
  
  A few weeks ago (5th June, to be precise) a similar thing happened in Belgium. Caused chaos on the railways.
  What, SNCB suddenly had trains leave on time?
2. Re:it's obvious by petes_PoV · 2012-06-22 05:00 · Score: 3, Funny
  
  I've got a nice bridge for sale.
  ahh, so you're the guy who bought it! Big of you to own up.
  
  --
  politicians are like babies' nappies: they should both be changed regularly and for the same reasons
3. Re:it's obvious by ColdWetDog · 2012-06-22 05:42 · Score: 4, Funny
  
  If anyone thinks it isn't a rehearsal for when Greece drops out of the Euro then I've got a nice bridge for sale.
  I'd take you up on that offer except my bank account seems to be locked. However, I have a good friend in a Central African state that has access to many large bank's internal systems. He has generously offered to transfer the funds through his contacts. All he needs is your banking account number and routing data and he will gladly oblige us both.
  Simply reply to this communicationl with the appropriate information.
  Thanking you in advance.
  
  --
  Faster! Faster! Faster would be better!
4. Re:it's obvious by Pieroxy · 2012-06-22 08:29 · Score: 3, Insightful
  
  I honestly don't think you're right. I've worked in enough "brack & mortar" companies that have slowly over time transferred all of their operations and value to IT so that nobody in the company outside of IT clearly knows how the system is supposed to be working.
  This would all be well and good if only the management - the very people that ordered the transfer - were aware of it. But no, they still see the value in all the little people doing nothing in their offices. After all, IT is a cost and doesn't bring money in ! Need to cut costs? Lay off those geeks. They serve no purpose.
  And all of a sudden, you've lost the only people that keep the entire company afloat.
  Because what these people need to realise is that the ONLY people needed in the company are the IT. You can layoff ALL OF THE REST OF THEM and the company will keep on running. Badly, not as efficient, maybe at 10% of its capacity. But the IT people can take over as a cashier, delivery boy, salesmen, etc. Those jobs are complex, if you want to be efficient at them. But anybody can do them badly.
  Lay off ALL OF IT. You company dies right there. End of the story. Because nobody else in the company can understand the first thing about IT. They wouldn't even know how to log in the production servers.
  They outsourcedtheir IT? Equivalent of selling off the company. They outsourced to some random dudes in some place they cannot even reach? They killed themselves.
  
  --
  Write boring code, not shiny code!
5. Re:it's obvious by Patch86 · 2012-06-22 23:20 · Score: 2
  
  I'd bet on something far more pragmatic. I work for one of their rivals, so I'm sure our systems are broadly comparable.
  They've outsourced their mainframe support to an Indian company. They're probably running a similar mainframe set-up to what we are. From the snippets of non-technical fluff that their spokesperson was spouting on Radio 4 yesterday, it sounded like it was their mainframe's daily update programme (which applies changes to customer accounts that have been received in the queue from the mainframe's interfaces with various other systems, such as their BACS/CHAPS/FP systems) that tripped over, apparently when applying a patch to it. That's consistent with them now having a large backlog of payments in and out to work through. It's also consistent with their ATMs still working, seeing as small ATM transactions are dealt with by the Link servers, which then goes on to charge against the customer's account. The cock-up was probably a case of brand new Indian contractors being unfamiliar with the nuances of an ancient set-up.
  All guesses obviously, but that's where I'd put my figurative 5p on the side.
food! by AltGrendel · 2012-06-22 03:44 · Score: 3, Funny

I hate it when I can't food. We all need to food sometime.

--
The simple truth is that interstellar distances will not fit into the human imagination
- Douglas Adams
1. Re:food! by networkBoy · 2012-06-22 04:08 · Score: 4, Insightful
  
  You know, typo's aside, this is tragic. Many people live paycheck to paycheck. I used to, up till fairly recently, and I'd still be hosed if this happened because my rainy day money is not in a bank fund.
  I would be calling for people to be put against the wall for this.
  -nB
  
  --
  whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
2. Re:food! by networkBoy · 2012-06-22 06:01 · Score: 4, Insightful
  
  This is not people's poor choices causing them hardship, this is their bank fscking the system hard.
  Like I said, even I, with a 12 month rainy day fund, would be in a world of hurt, because I would not be able to put the money into the account to pay bills with, even if I could get it out from where it was.
  Someone living wholly beyond their means is one thing. A bank not posting deposits is entirely different. Different, and unforgivable.
  -nB
  
  --
  whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
That's one way ... by ackthpt · 2012-06-22 03:45 · Score: 5, Funny

To prevent another run on UK banks.

--

A feeling of having made the same mistake before: Deja Foobar
1. Re:That's one way ... by samkass · 2012-06-22 04:20 · Score: 2
  
  Or cause one, once things come back up.
  
  --
  E pluribus unum
2. Re:That's one way ... by Chrisq · 2012-06-22 05:21 · Score: 2
  
  Actually you over estimate the intelligence of the GDP, generally dumb public. .
  That explains why they say that the USA has a higher GPT per capita than Europe.
test labs by fluffythedestroyer · 2012-06-22 03:49 · Score: 2

Always have one. Test it in your testing environment and if it works correctly, deploy on live servers. server idiots guide 101 available in all stores right now
1. Re:test labs by networkBoy · 2012-06-22 03:59 · Score: 3, Interesting
  
  For our critical stuff we hav 4 layers to get to production:
  1) I do Foo and test it on my dev machine on an unsigned system
  2) I submit my Foo to the build system, it builds it for unsigned systems and it is tested by our QRE/Validation department
  3) Once things look good, it is signed, then deployed to our Validation dept to run on signed systems.
  4) If it is still looking good, then it is deployed.
  And we're not even a banking related operation...
  -nB
  
  --
  whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
2. Re:test labs by cusco · 2012-06-22 07:26 · Score: 4, Insightful
  
  Ah, but they've outsource their IT staff to save money, so they probably got rid of the test lab for the same reason. Never underestimate the stupidity of a group of executives looking for a short-term cost saving.
  
  --
  "Think about how stupid the average person is. Now, realise that half of them are dumber than that." - George Carlin
Annoyed customer by ralphius · 2012-06-22 03:53 · Score: 3, Interesting

As a customer, I'm annoyed that a) A major high street bank doesn't have enough failsafes/testing to prevent this and b) That there is so little communication as to the cause and expected time to fix the problem.
Thankfully I don't live week to week off my wage like some people do, but if I did I'd be having major problems as evidenced by some of the BBC stories.
1. Re:Annoyed customer by Skaperen · 2012-06-22 04:24 · Score: 3, Insightful
  
  Even though you were not impacted, you should still move your money to another bank ASAP.
2. Re:Annoyed customer by petes_PoV · 2012-06-22 05:07 · Score: 4, Insightful
  
  The bank won't ever say what the problem is/was. The reasons are that they think their customers are stupid so wouldn't understand - but they also probably don't actually know, themselves. That is also the reason they wouldn't issue a time-to-fix estimate. Their only IT people are outsourced, cheap staff in a foreign country and it's not likely that they have enough understanding of the systems to do much more than try undoing the last thing that happened before it all went wrong.
  Natwest are not alone, another british bank (Barclays) has often been reported as having Monday-morning outages, which sounds a lot like a weekend update that went wrong.
  As it is, having a single account is like having a single credit-card, no spare car key or only one kidney. You can get by until something goes wrong, but in an ideal world you'd have at least one spare.
  
  --
  politicians are like babies' nappies: they should both be changed regularly and for the same reasons
Guess this was inevitable.... by trancemission · 2012-06-22 03:57 · Score: 5, Insightful

When you remove a 1000 members of IT staff [many of which were probably your best] and replace them with 500 offshore workers combined with the need to support *legacy* systems, you are asking for trouble.
http://www.computerweekly.com/news/1280093677/Royal-Bank-of-Scotland-cuts-1000-IT-jobs
Regardless of the technical problems, the root cause of this seems to be management......
1. Re:Guess this was inevitable.... by Hatta · 2012-06-22 04:03 · Score: 5, Insightful
  
  Regardless of the technical problems, the root cause of this seems to be management......
  Management always gets the credit when things go well. They should always get the blame when things go wrong.
  
  --
  Give me Classic Slashdot or give me death!
2. Re:Guess this was inevitable.... by CanHasDIY · 2012-06-22 04:56 · Score: 2
  
  Regardless of the technical problems, the root cause is pretty much ALWAYS management......
  FTFY.
  
  --
  An enigma, wrapped in a riddle, shrouded in bacon and cheese
Fix has already been made by kiwimate · 2012-06-22 04:14 · Score: 5, Informative

The summary says there's no fix date available, and I know that's what it says in the Register article, but the second article, linking to the bank's site, has this to say:

The bank says the issue has now been fixed but it will take the weekend to clear the backlog which amounts to millions of euro in transactions.
Problem and fix by evilgraham · 2012-06-22 04:29 · Score: 5, Informative

Ok, RBS group (which includes NatWest) updates customer accounts via a vast number of batch jobs on a (very big) mainframe overnight. They use CA-7 (a job scheduler, originally written by Uccel) to manage the release, interdependencies and status of these jobs.
It would appear that an update to CA-7 resulted in the actual schedule for these being corrupted or deleted. Therefore they do not know how much any customer actually has in their account, since accounts were not updated with transactions from the previous day.
The problem now appears to be fixed (read: update backed out and control datasets restored), but they still have to run through three days of unprocessed transactions, so people are not getting money paid in during these three days into their accounts as expected, resulting in misery.
This is something which should have been detected and fixed in a competent mainframe site very quickly indeed, so I imagine that the wisdom of outsourcing any "back-office" function of this nature is shortly going to be a matter of very close scrutiny.
Hope this helps.
Re:I keep getting headhunted by RBS/Citizens by Skaperen · 2012-06-22 04:32 · Score: 2

Actually, it is the fault of management for creating a lousy work environment.
Re:Fail. by v1 · 2012-06-22 04:45 · Score: 2

As a bank, you'd think they would be able to deploy the patch to only a couple of their user base to see if there's anything wrong. Or at the very least test it in a closed test environment.
Sometimes there's a limit to what you can test. Simulating a multilevel network with very broad trees, as a big bank probably uses, probably makes do with a significantly simplified environment. All it takes is some yutz somewhere to try to freeze an account that's already frozen (or do something else obtuse that's very hard to predict) to trigger an untested path bug and BOOM.
Being able to roll back a patch becomes a very useful feature at that point. But rolling back large amounts of financial transactions is a whole 'nother big can of worms.
Sometimes they just have to turn things on they shouldn't, to get the water flowing again, and try to clean up as best they can next weekend while they pour over the logs trying to catch things that got rolled back wrong etc. My bank had this happen once in their recent upgrades that I've caught, and it turned out to be a "bank error in your favor, collect $130". (they auto-paid a bill of mine and never debited my account) But that's the cheaper price they pay for screwing up. The alternative would be to let everyone know that they screwed up the books and are going to be fixing things for the next week, and that drops peoples' confidence in their bank which is incredibly bad for business at a bank, people really flip out when their bank tells them they don't quite know where all their money is right at the moment. So they just take a deep breath and take some little hits here and there to avoid much worse PR damage.

--
I work for the Department of Redundancy Department.
consequences by sribe · 2012-06-22 05:30 · Score: 5, Interesting

Well, I don't know if it's still the case, but when I worked in banking IT in the late 80s here in the US there was a standing rule: if you don't process checks for more than 24 hours, you can be taken over by the Federal Reserve--where that takeover implies the possibility of being shut down and your assets distributed to other banks.
That really kept the fear of god in management with regard to keeping core IT running, backups, disaster recovery, etc. Daily offsite backups, periodically loading the backups at a backup facility and running test loads...
There should still be such a rule, and it should apply to electronic transactions as well as checks (not much difference anymore anyway), and the UK ought to adopt it. If a bank takes down its main system with a fucked-up patch, and can't get its disaster recovery plan working in 24 hours, shut it down.
1. Re:consequences by Rich0 · 2012-06-22 09:47 · Score: 3, Interesting
  
  I'd go a step further and limit the size of banks to something the government can reasonably deal with should things go south.
  If the biggest banks had tens or hundreds of millions in deposits it wouldn't be such a big deal when one of them has an issue like this. Just have the government step in and take care of the people affected, and then fine the living daylights out of whoever messed up once it is all sorted out.
  The problem is that these banks are getting so large that you can fit those responsible for 80% of the world's wealth into a single room. That means that they talk to each other, adopt similar policies, and so on. We have far more systemic risk, and even when you get a random failure like this the impact is enormous.
that's not a bug.. by bigwavedave33 · 2012-06-22 06:22 · Score: 2

That's not a bug for the bank, that's a feature!
Re:Has the worst happened by evilgraham · 2012-06-22 07:25 · Score: 2

I very much doubt that anyone's data will be trashed, and the main account balance for RBS/NatWest does *not* live in a database (although many databases will be updated from there). I would think that they are currently trying to manually process a shit-ton of transactions which are usually processed via automatic nightly scheduling. When you have to do this, you want people around who really know the system, and it would appear that due to off-shoring, these people may not work for RBS any more. Hence getting things back in synch is taking an embarrassingly long time. In a sane world, a failure of CA-7 following an upgrade ought to be a piece of piss to remedy and recover from with competent staff, even in a major production system. Someone in the RBS hierarchy is going to have to explain how the discrepancy between this and what actually occurred arose, and if off-shoring was an aggravating factor, then heads should roll.
These are absolutely core business systems; making decisions which turn out to compromise their smooth running is unforgivable. If I banked with any bank in the RBS group, I'd be out of there ASAP if this indicative of how they run their operations.
RBS was a too-big-to-fail bank by decora · 2012-06-22 14:37 · Score: 2

lest we forget, a huge number of the subprime mortgage securites (CDOs) had the "RBS" name on them. RBS only exists because the taxpayers kept it afloat. it was 'too big to fail'.
the fact that it would fail again in some catastrophic way is not surprising. it is like watching a hippopotamous shit all over the floor and then scratching your head and asking "why did the hippo shit all over the floor?". because thats what hippos do. they shit on the floor. if you want to stop having to wipe hippo shit out of the floor by the truckload, you might want to just get the hippo out of the room instead of trying to figure out how to get it to stop shitting.