Finastra, a prominent financial technology firm that serves 45 of the world’s top 50 banks, is currently investigating a significant data breach that has affected its internal file transfer platform. On November 7, 2024, the company’s security team detected unusual activity on its system, leading to the discovery that a cybercriminal, operating under the alias “abyss0,” had stolen over 400GB of data. The hacker subsequently began selling the stolen files, which are believed to contain sensitive information from some of Finastra’s largest banking clients. This breach has raised significant concerns about data security within the financial services sector.
The compromised data is reported to include customer information, but Finastra has confirmed that banking details or passwords were not involved. The breach appears to have been limited to the file transfer platform, and there is no indication that the threat actor deployed malware or tampered with any customer files. However, the stolen data could include sensitive transaction details and financial records. The company emphasized that no disruption occurred to customer operations, and services remained uninterrupted, with an alternative secure file-sharing platform already put in place.
Finastra has acted quickly to address the incident, notifying its clients and providing ongoing updates. The company is conducting a thorough investigation to understand the full scope of the breach and to identify any specific customers affected. In addition to working with affected clients, Finastra is sharing Indicators of Compromise (IOCs) and has been communicating directly with customers’ security teams. The company is also analyzing the data to assess which customers might be impacted by the breach and to ensure the security of its products.
This breach highlights the vulnerabilities within data transfer systems and the risks faced by financial institutions in safeguarding sensitive information. While Finastra has taken swift steps to mitigate the effects of the breach, this incident underscores the importance of robust cybersecurity measures in protecting customer data, particularly in industries that handle large volumes of sensitive financial transactions. As the investigation continues, Finastra is expected to work closely with clients and cybersecurity experts to enhance its security infrastructure and prevent future breaches.
Reference:
