This is interesting: "made off with a list of the applications and programs that run on every standard JPMorgan computer". That would mean source codes of the applications?
No, more likely just the image of the standard build. I don't have source for most of the software on my Windows machine, for example. while I don't know what sort of platform they use at JPM, if its anything like bespoke platforms I've seen at other financial institutions such as Merill Lynch, end users only have binaries.
If they actually have all the source code that would be a pretty horrendous risk factor (not that my scenario is so great). We're getting into too-big-to-fail territory here; I really wonder if it's time regulators went beyond swingeing fines and actually revoked a bank's charter.
I wouldn't assume that at all. They say "a list of the applications and programs", not "program listing...". In this case, it reads to me as just that, a list, such as Word xx.xx, Outlook xx.xx, girlfriend 2.0, ms-dos 5.5, etc.
That's what I meant (see the second sentence). The first sentence of my post was, however, originally missing a "not" (now added), so I see the confusion.
If they actually have all the source code that would be a pretty horrendous risk factor (not that my scenario is so great). We're getting into too-big-to-fail territory here; I really wonder if it's time regulators went beyond swingeing fines and actually revoked a bank's charter.