You have the opportunity retract this statement now.

A Code Theft at Goldman Is a Tantalizing Story

Reuters’ Matthew Goldstein broke a fascinating story on Sunday, reporting that a Goldman Sachs computer programmer stole at least part of the code the investment bank uses for its so-called program trading.

Sergey Aleynikov, a Russian immigrant who’s a naturalized U.S. citizen, who coded for Goldman, left to go to a Chicago firm for three times his $400,000 salary. Before he left, he swiped 32 megabytes of top-secret computer code (accidentally, he says) related to Goldman’s proprietary automated trading software.

What’s that and why’s it so important?



Oh, yeah, that.

In his original piece, Goldstein pointed to the work of blogger “Tyler Durden” of Zero Hedge, who had been writing about Goldman (which, awkwardly, and as a matter of disclosure, is one of The Audit’s funders) suddenly falling off the New York Stock Exchange’s automated-trading charts the week before. That’s strange because Goldman is always No. 1. The NYSE has since said it was a screw-up, but it’s an awfully coincidentally timed screw-up.

Zero Hedge has been all over this story since with sometimes-hyperbolic posts like the one linked above asking whether the incident will “destroy Goldman Sachs.” Something tells me no, no it will not. But there’s a lot of interesting analysis and background in that post (applaud Goldstein for linking to it, as well).

According to a Factiva search, Reuters had the story all by its lonesome (in the mainstream press, anyway) for some seventeen hours. The New York Times, Wall Street Journal, and Financial Times all had no news of the scandal in their Monday editions.

Bloomberg picked up the ball and advanced it a bit on Monday.

I think Bloomberg’s piece handles the news angle better than any of the other big-press pieces today, too. It leads with the prosecutor saying that “may lose its investment in a proprietary trading code and millions of dollars from increased competition if software allegedly stolen by a former employee gets into the wrong hands.”

That’s a key question for Goldman shareholders, obviously. Bloomberg points out that Aleynikov uploaded the code to a German website and it’s unclear who, if anyone, got their hands on it. It’s unclear if or how much Goldman’s trading could be affected by the theft.

The Times, on B1 today, quotes a market participant saying it wouldn’t be easy to use the stolen code in the U.S., but that “in countries that are more lawless it could have value.”

Germany is the least likely lawless place, but it will be interesting to find out why Aleynikov used a German server for his upload. Goldman told the Times and the Journal, which stuffs the story on C3, that the theft wouldn’t affect it, but both papers use the past tense, which leaves the question open as to whether it could yet affect it.

But the most interesting part of Bloomberg’s story is this quote from Assistant U.S. Attorney Joseph Facciponti (which the NYT borrows):



Which raises the obvious question of whether Goldman Sachs itself uses the program to manipulate markets in unfair ways. What controls are there on this? Who regulates it? I’ll look forward to some explanatory pieces on this in the days ahead.

Newsweek wrote about the case today, but unfortunately fell into some incorrect bloggy speculation about which Chicago firm had hired Aleynikov, saying “speculation is that the Chicago-based employer is a small company called Getco, which uses “highly-automated algorithms” to enhance “liquidity and efficiency to electronic financial markets.”

It’s easy to get things wrong on a developing story like this, especially if you crib speculation off the Internet.

The Aleynikov/Goldman story could turn out to be a simple theft story or it could be something much more. Whatever, it’s one to keep an eye on.

Why would I? It's the general consensus among lawyers, the FSF, and virtually everyone else who understands the industry.

Why do you think violators comply rather than taking it to court?

Because Blackcat and Kuci don't seem to comprehend the immense value of proprietary software for many businesses, maybe this article would help.

Cite.

Show me an example of a violation where opening the source was more damaging than the potential monetary damages and the defendant had sufficient resources to actually put up a defense, and they open-sourced their code rather than fight for monetary damages instead.