"Latitude Financial Admits Breach Impacted Millions"

Latitude Financial has recently revealed that a cyberattack earlier this month resulted in the theft of over 14 million customer records, including sensitive personal information.  The Melbourne-headquartered consumer lender said in a statement that hackers took 7.9 million Australian and New Zealand driver’s license numbers, 40% of which were submitted to the firm in the past 10 years.  The company noted that an additional 6.1 million records dating back to 2005 were also stolen, of which 94% were provided before 2013.  Many of these will still be valid, as they contain personal details such as name, address, telephone number, and date of birth.  According to the company, some 53,000 passport numbers were also stolen, as were the financial statements related to “less than 100 customers.” Initially, Latitude Financial claimed the breach had resulted in the loss of only around 100,000 identification documents and 225,000 customer records.  Although the company claimed no suspicious activity had been observed since March 16, the firm will likely face a significant fallout from the incident.  Attackers reportedly managed to obtain Latitude employee credentials to access the documents, although it’s not clear exactly how.  Latitude Financial is Australia’s largest non-bank lender and provides buy now, pay later (BNPL) services to a string of popular domestic retailers.

Infosecurity reports: "Latitude Financial Admits Breach Impacted Millions"