A ransomware attack against a large financial services provider has become a problem for many companies it works with, two of which have already alluded to potential negative impacts on customer data.
The infamous LockBit group earned some undue attention early last week when it claimed to have hacked the US Federal Reserve.
It had breached the far lesser Evolve Bank & Trust.
According to a statement from Memphis-based Evolve, the attack occurred in late May, when an Evolve employee clicked on a malicious phishing link.
Though the attackers didn't access any customers' money, they were able to access and download customer information from databases and a file share.
LockBit was kicked out of Evolve's systems by the end of the month.
After the victim refused to pay the ransom, the group leaked the data it had stolen.
The twist is that, in addition to banking and lending for private citizens and businesses, Evolve offers business-to-business banking-as-a-service and payments processing technologies.
So beyond its own direct customers, its latest cyber incident has also spread to users of other financial companies that integrate with it, and more victims of the breach are coming to light.
There's the multibillion-dollar London-based Wise.
To enable that service, Wise shared with Evolve its customers' names, addresses, dates of birth, contact details, and ID numbers, including employer identification numbers and Social Security numbers.
Ditto to buy now, pay later company Affirm, which uses Evolve to issue and service its credit card-style Affirm Cards.
Customers' cards remain untouched, but the personal information Affirm shared with Evolve is another matter.
A number of them are currently investigating whether their customers' data has been affected.
This Cyber News was published on www.darkreading.com. Publication date: Tue, 02 Jul 2024 21:30:07 +0000