Finastra financial company has fallen victim to a cyber attack, resulting in the theft of over 400 GB of data. The breach took place on the company’s internal platform used for data transfer. The hacker, known as “Abyss0”, then put up the stolen information for sale on the forum Breachforums.
On November 8, Finastra informed its customers about the breach, revealing that suspicious activity was detected a day earlier. According to data by Finastra, the attackers did not implant any malicious software or tamper with customer files, but they did manage to make off with a substantial amount of data.
The company attributed the breach to a compromise in their accounting data. To bolster security, an alternative data transfer platform has been activated. Currently, efforts are underway to assess the extent of the leak and identify those affected. Finastra has assured customers that their operations were not directly compromised.
Abyss0 started advertising the sale of the stolen data on October 31 without revealing the company’s name. The initial asking price was $20,000, but by November 3, it had dropped to $10,000. On November 7, the hacker made a new post reaching out to Finastra customers, including major banks worldwide. Shortly after, the Abyss0 account vanished from the forum, and the associated Telegram profile was deleted.
The initial and updated announcements made by the hacker disclosing the company’s name can be found on KrebsonSecurity.
The full impact of the breach and its repercussions for customers are still being assessed. Finastra is actively investigating the incident and is committed to keeping customers informed of any developments.