Will the company be able to get out of the situation without damaging its reputation and confidential data?
Finastra, a fintech company, was the victim of a cyberattack in which more than 400 GB of data was stolen. The incident took place on an internal data transmission platform. A hacker under the nickname "abyss0" put stolen information up for sale on the BreachForums forum.
On November 8, the company notified customers of the hack, stating that suspicious activity had been detected a day earlier. According to Finastra, the attackers did not introduce malware or make changes to customer files, but managed to steal a significant amount of data.
The company reported that the hack occurred as a result of compromised credentials. To ensure security, an alternative data transmission platform was activated. At the moment, the analysis of the scale of the leak and the accurate identification of the affected persons is underway, and the company also ruled out the possibility of direct impact on customer operations.
The hacker "abyss0" posted ads for the sale of data on October 31 without specifying the name of the company. The original price was $20,000, but by November 3 it was reduced to $10,000. On November 7, the hacker published a new message, revealing the data connection with Finastra customers, among whom were the world's largest banks. Soon, the "abyss0" account disappeared from the forum, and his Telegram profile was deleted.
Original and modified hacker post with company name (KrebsOnSecurity)
The scale of the incident and its impact on customers have yet to be assessed. Finastra continues to investigate and intends to keep customers informed of all updates.
Source
Finastra, a fintech company, was the victim of a cyberattack in which more than 400 GB of data was stolen. The incident took place on an internal data transmission platform. A hacker under the nickname "abyss0" put stolen information up for sale on the BreachForums forum.
On November 8, the company notified customers of the hack, stating that suspicious activity had been detected a day earlier. According to Finastra, the attackers did not introduce malware or make changes to customer files, but managed to steal a significant amount of data.
The company reported that the hack occurred as a result of compromised credentials. To ensure security, an alternative data transmission platform was activated. At the moment, the analysis of the scale of the leak and the accurate identification of the affected persons is underway, and the company also ruled out the possibility of direct impact on customer operations.
The hacker "abyss0" posted ads for the sale of data on October 31 without specifying the name of the company. The original price was $20,000, but by November 3 it was reduced to $10,000. On November 7, the hacker published a new message, revealing the data connection with Finastra customers, among whom were the world's largest banks. Soon, the "abyss0" account disappeared from the forum, and his Telegram profile was deleted.
Original and modified hacker post with company name (KrebsOnSecurity)
The scale of the incident and its impact on customers have yet to be assessed. Finastra continues to investigate and intends to keep customers informed of all updates.
Source
