Fintech

Finastra confirms breach amid claims of 400 GB data stolen by hackers

bexib
By bexib 3 Min Read

Finastra, a leading financial software provider serving many of the world’s largest banks, is grappling with a data breach.

The company acknowledged the incident tech crunch Following claims of breach by hackers finastra‘s internal file transfer platform and subsequent attempts to sell stolen data.

cyber security journalist brian krebs The breach first came to public attention when a hacker posted 400 gigabytes of data allegedly looted from Finastra on a known cybercrime forum.

This trove of information reportedly included confidential client files and internal Finastra documents.

Toppan-iDGate_

Finastra confirmed to Krebs that data was indeed compromised from its systems in an incident disclosure it shared with customers, but the company declined to provide TechCrunch with a copy of the disclosure. .

Finastra spokeswoman Sofia Romano said the company first became aware of “suspicious activity” on Nov. 7, specifically within its “internally hosted secure file transfer platform (SFTP).” revealed that it was detected.

The hacker who sold the data claimed that the data originated from IBM Aspera, a widely used file transfer software. However, Mr. Finastra does not substantiate this claim.

At this time, Finastra cannot disclose the number of customers affected or the exact nature of the compromised data.

“We are analyzing the affected data to determine which specific customers were affected,” Romano said, adding that the compromised SFTP platform was utilized by all Finastra customers. He added that there was no such thing.

In parallel, Finastra is “evaluating and communicating products that are not dependent on specific versions of the compromised SFTP platform” to ensure continuity of service to unaffected clients.

Initial findings suggest that the breach may have resulted from compromised user credentials, suggesting theft of usernames and passwords.

It remains unclear whether multi-factor authentication was implemented on the compromised systems.

Finastra continues to investigate the root cause of the breach.

Featured image credit: Edited from freepic

You Might Also Like

KoinWorks subsidiary faces OJK scrutiny over lender payment delays

Two-thirds of banks lose customers due to poor onboarding, Fenergo warns

India in talks to build new cross-border payments linkage, RBI announced

Zühlke champions generative AI, digital money for the future of finance at SFF 2024

Why this Chinese unicorn is betting big on B2B cross-border payments in Southeast Asia

Share This Article
Previous Article Holiday Sledding: Maximize your reservations and prepare for the Christmas season
Next Article KoinWorks subsidiary faces OJK scrutiny over lender payment delays
Leave a comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Stay Connected

Latest News

KoinWorks subsidiary faces OJK scrutiny over lender payment delays
Fintech
Holiday Sledding: Maximize your reservations and prepare for the Christmas season
Hospitality & Tourism
Wallet Pass is a mobile marketing channel
Retail & E-commerce
Azzaro Group’s exciting new travel offering for 2025 combines the cultural hub of Cape Town with the unspoiled nature of the Okavango Delta
Hospitality & Tourism