Slashdot Mirror

← Back to Stories (view on slashdot.org)

Faulty Patch Freezes Millions of UK Bank Accounts

Posted by timothy on from the cuba-will-send-doctors dept.

frisket writes with news from The Register about ongoing problems for some UK banks: "'RBS and Natwest have failed to register inbound payments for up to three days, customers have reported, leaving people unable to pay for bills, travel and even food. The banks — both owned by RBS Group — have confirmed that technical glitches have left bank accounts displaying the wrong balances and certain services unavailable. There is no fix date available.' Customers of NatWest subsidiary Ulster Bank in Ireland have also been left without banking services. RTE reports that 'the problem had arisen within the systems of parent bank RBOS when an incorrect patch was applied.'"

26 of 155 comments (clear)

  1. Solution: by Cornwallis · · Score: 4, Funny

    Where are those cleanmypc.com ads when you need them?

  2. They outsourced their IT dept... by Anonymous Coward · · Score: 4, Insightful

    ... getting rid of all the expensive people with experience in the mainframe backend system...

    1. Re:They outsourced their IT dept... by Anonymous Coward · · Score: 5, Informative

      A later commenter did: http://www.computerweekly.com/news/1280093677/Royal-Bank-of-Scotland-cuts-1000-IT-jobs

    2. Re:They outsourced their IT dept... by kiwimate · · Score: 4, Informative

      I had the same question, and then saw this post further down, referencing this story from 2010 (which in turn points to another story discussing this as an ongoing strategy). Seems to have validity.

    3. Re:They outsourced their IT dept... by cusco · · Score: 4, Insightful

      "Expensive" experienced people would know all the interdependencies among systems, for a start. The outsourced staff are quite likely to not know that System W has to be brought up before System Q, because System S needs to authenticate with W first before it can provide data to Q.

      And how much money do you think they're saving with their outsourced people today?

      --
      "Think about how stupid the average person is. Now, realise that half of them are dumber than that." - George Carlin
  3. Aargh by Anonymous Coward · · Score: 4, Funny

    I always mess up some mundane detail.

    1. Re:Aargh by TheSpoom · · Score: 5, Funny

      This is not a mundane detail, Michael!

      --
      It's better to vote for what you want and not get it than to vote for what you don't want and get it.
      - E. Debs
  4. food! by AltGrendel · · Score: 3, Funny

    I hate it when I can't food. We all need to food sometime.

    --
    The simple truth is that interstellar distances will not fit into the human imagination

    - Douglas Adams

    1. Re:food! by networkBoy · · Score: 4, Insightful

      You know, typo's aside, this is tragic. Many people live paycheck to paycheck. I used to, up till fairly recently, and I'd still be hosed if this happened because my rainy day money is not in a bank fund.

      I would be calling for people to be put against the wall for this.
      -nB

      --
      whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
    2. Re:food! by networkBoy · · Score: 4, Insightful

      This is not people's poor choices causing them hardship, this is their bank fscking the system hard.
      Like I said, even I, with a 12 month rainy day fund, would be in a world of hurt, because I would not be able to put the money into the account to pay bills with, even if I could get it out from where it was.

      Someone living wholly beyond their means is one thing. A bank not posting deposits is entirely different. Different, and unforgivable.
      -nB

      --
      whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
  5. That's one way ... by ackthpt · · Score: 5, Funny

    To prevent another run on UK banks.

    --

    A feeling of having made the same mistake before: Deja Foobar
  6. Annoyed customer by ralphius · · Score: 3, Interesting

    As a customer, I'm annoyed that a) A major high street bank doesn't have enough failsafes/testing to prevent this and b) That there is so little communication as to the cause and expected time to fix the problem.
    Thankfully I don't live week to week off my wage like some people do, but if I did I'd be having major problems as evidenced by some of the BBC stories.

    1. Re:Annoyed customer by Skaperen · · Score: 3, Insightful

      Even though you were not impacted, you should still move your money to another bank ASAP.

    2. Re:Annoyed customer by petes_PoV · · Score: 4, Insightful
      The bank won't ever say what the problem is/was. The reasons are that they think their customers are stupid so wouldn't understand - but they also probably don't actually know, themselves. That is also the reason they wouldn't issue a time-to-fix estimate. Their only IT people are outsourced, cheap staff in a foreign country and it's not likely that they have enough understanding of the systems to do much more than try undoing the last thing that happened before it all went wrong.

      Natwest are not alone, another british bank (Barclays) has often been reported as having Monday-morning outages, which sounds a lot like a weekend update that went wrong.

      As it is, having a single account is like having a single credit-card, no spare car key or only one kidney. You can get by until something goes wrong, but in an ideal world you'd have at least one spare.

      --
      politicians are like babies' nappies: they should both be changed regularly and for the same reasons
  7. Guess this was inevitable.... by trancemission · · Score: 5, Insightful

    When you remove a 1000 members of IT staff [many of which were probably your best] and replace them with 500 offshore workers combined with the need to support *legacy* systems, you are asking for trouble.

    http://www.computerweekly.com/news/1280093677/Royal-Bank-of-Scotland-cuts-1000-IT-jobs

    Regardless of the technical problems, the root cause of this seems to be management......

    1. Re:Guess this was inevitable.... by Hatta · · Score: 5, Insightful

      Regardless of the technical problems, the root cause of this seems to be management......

      Management always gets the credit when things go well. They should always get the blame when things go wrong.

      --
      Give me Classic Slashdot or give me death!
  8. Re:test labs by networkBoy · · Score: 3, Interesting

    For our critical stuff we hav 4 layers to get to production:
    1) I do Foo and test it on my dev machine on an unsigned system
    2) I submit my Foo to the build system, it builds it for unsigned systems and it is tested by our QRE/Validation department
    3) Once things look good, it is signed, then deployed to our Validation dept to run on signed systems.
    4) If it is still looking good, then it is deployed.

    And we're not even a banking related operation...
    -nB

    --
    whois gawk date unzip strip find touch finger mount join nice man top fsck grep eject more yes exit umount sleep dump
  9. Fix has already been made by kiwimate · · Score: 5, Informative

    The summary says there's no fix date available, and I know that's what it says in the Register article, but the second article, linking to the bank's site, has this to say:

    The bank says the issue has now been fixed but it will take the weekend to clear the backlog which amounts to millions of euro in transactions.

  10. Re:it's obvious by GNious · · Score: 4, Funny

    A few weeks ago (5th June, to be precise) a similar thing happened in Belgium. Caused chaos on the railways.

    What, SNCB suddenly had trains leave on time?

  11. Problem and fix by evilgraham · · Score: 5, Informative
    Ok, RBS group (which includes NatWest) updates customer accounts via a vast number of batch jobs on a (very big) mainframe overnight. They use CA-7 (a job scheduler, originally written by Uccel) to manage the release, interdependencies and status of these jobs.

    It would appear that an update to CA-7 resulted in the actual schedule for these being corrupted or deleted. Therefore they do not know how much any customer actually has in their account, since accounts were not updated with transactions from the previous day.

    The problem now appears to be fixed (read: update backed out and control datasets restored), but they still have to run through three days of unprocessed transactions, so people are not getting money paid in during these three days into their accounts as expected, resulting in misery.

    This is something which should have been detected and fixed in a competent mainframe site very quickly indeed, so I imagine that the wisdom of outsourcing any "back-office" function of this nature is shortly going to be a matter of very close scrutiny.

    Hope this helps.

  12. Re:it's obvious by petes_PoV · · Score: 3, Funny

    I've got a nice bridge for sale.

    ahh, so you're the guy who bought it! Big of you to own up.

    --
    politicians are like babies' nappies: they should both be changed regularly and for the same reasons
  13. consequences by sribe · · Score: 5, Interesting

    Well, I don't know if it's still the case, but when I worked in banking IT in the late 80s here in the US there was a standing rule: if you don't process checks for more than 24 hours, you can be taken over by the Federal Reserve--where that takeover implies the possibility of being shut down and your assets distributed to other banks.

    That really kept the fear of god in management with regard to keeping core IT running, backups, disaster recovery, etc. Daily offsite backups, periodically loading the backups at a backup facility and running test loads...

    There should still be such a rule, and it should apply to electronic transactions as well as checks (not much difference anymore anyway), and the UK ought to adopt it. If a bank takes down its main system with a fucked-up patch, and can't get its disaster recovery plan working in 24 hours, shut it down.

    1. Re:consequences by Rich0 · · Score: 3, Interesting

      I'd go a step further and limit the size of banks to something the government can reasonably deal with should things go south.

      If the biggest banks had tens or hundreds of millions in deposits it wouldn't be such a big deal when one of them has an issue like this. Just have the government step in and take care of the people affected, and then fine the living daylights out of whoever messed up once it is all sorted out.

      The problem is that these banks are getting so large that you can fit those responsible for 80% of the world's wealth into a single room. That means that they talk to each other, adopt similar policies, and so on. We have far more systemic risk, and even when you get a random failure like this the impact is enormous.

  14. Re:it's obvious by ColdWetDog · · Score: 4, Funny

    If anyone thinks it isn't a rehearsal for when Greece drops out of the Euro then I've got a nice bridge for sale.

    I'd take you up on that offer except my bank account seems to be locked. However, I have a good friend in a Central African state that has access to many large bank's internal systems. He has generously offered to transfer the funds through his contacts. All he needs is your banking account number and routing data and he will gladly oblige us both.

    Simply reply to this communicationl with the appropriate information.

    Thanking you in advance.

    --
    Faster! Faster! Faster would be better!
  15. Re:test labs by cusco · · Score: 4, Insightful

    Ah, but they've outsource their IT staff to save money, so they probably got rid of the test lab for the same reason. Never underestimate the stupidity of a group of executives looking for a short-term cost saving.

    --
    "Think about how stupid the average person is. Now, realise that half of them are dumber than that." - George Carlin
  16. Re:it's obvious by Pieroxy · · Score: 3, Insightful

    I honestly don't think you're right. I've worked in enough "brack & mortar" companies that have slowly over time transferred all of their operations and value to IT so that nobody in the company outside of IT clearly knows how the system is supposed to be working.

    This would all be well and good if only the management - the very people that ordered the transfer - were aware of it. But no, they still see the value in all the little people doing nothing in their offices. After all, IT is a cost and doesn't bring money in ! Need to cut costs? Lay off those geeks. They serve no purpose.

    And all of a sudden, you've lost the only people that keep the entire company afloat.

    Because what these people need to realise is that the ONLY people needed in the company are the IT. You can layoff ALL OF THE REST OF THEM and the company will keep on running. Badly, not as efficient, maybe at 10% of its capacity. But the IT people can take over as a cashier, delivery boy, salesmen, etc. Those jobs are complex, if you want to be efficient at them. But anybody can do them badly.

    Lay off ALL OF IT. You company dies right there. End of the story. Because nobody else in the company can understand the first thing about IT. They wouldn't even know how to log in the production servers.

    They outsourcedtheir IT? Equivalent of selling off the company. They outsourced to some random dudes in some place they cannot even reach? They killed themselves.

    --
    Write boring code, not shiny code!