Some South Korean financial firms may be vulnerable to security breaches because they use an open source operating protocol that can expose customers' passwords and encryption keys, local regulators said Wednesday. The Financial Information Sharing and Analysis Center (ISAC), which assesses the security systems of local firms, said it found weaknesses in 12 of the 142 financial institutions assessed.