The ransomware attack on Patelco Credit Union this summer led to a data breach affecting over 1 million individuals, revealed the company. Patelco Credit Union now provides an update on the incident and discloses that the data breach impacted 1,009,472 people following the July ransomware attack. The credit union investigated the security breach and discovered that threat actors first gained access to its systems on May 23, 2024, and exfiltrated a database containing personal information. Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. Patelco did not reveal the ransomware group that breached its systems, however the RansomHub group added Patelco Credit Union to its Tor leak site in August. At the end of June, the American credit union Patelco Credit Union shut down several of its banking systems to contain a ransomware attack. Although the investigation identified unauthorized access to some of our databases, the specific data that was accessed has not been determined.” reads the data breach notice sent to the impacted individuals. “Following the investigation and a thorough review of the data involved, we confirmed on August 14, 2024, that the accessed databases contained your personal information. Out of these cookies, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. This category only includes cookies that ensures basic functionalities and security features of the website. It is mandatory to procure user consent prior to running these cookies on your website. We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. Patelco Credit Union is a member-owned, not-for-profit credit union that serves Northern California, particularly the San Francisco Bay Area. Play ransomware attack on Xplain exposed 65,000 files containing data relevant to the Swiss Federal Administration. The information in the accessed databases included first and last name with Social Security number, Driver’s License number, date of birth, and/or email address. Necessary cookies are absolutely essential for the website to function properly.
This Cyber News was published on securityaffairs.com. Publication date: Mon, 30 Sep 2024 20:43:05 +0000