"Fiserv Attack Exposes 837K Flagstar Bank Clients"

Cl0p, the Russia-linked ransomware group, added another US-based company to its MOVEit Transfer attack victims list. Flagstar Bank notified affected individuals that attackers accessed their data via Fiserv, a company the bank uses for payment processing and mobile banking. The unauthorized activity in the MOVEit Transfer environment occurred between May 27 and May 31, 2023, before the public disclosure of this vulnerability. During this time, unauthorized actors accessed vendor files transferred via MOVEit, which included Flagstar Bank and related institution customer information. According to information provided to the Maine Attorney General by Flagstar Bank, 837,390 individuals were affected by the attack. Threat actors may have gained access to customers' Social Security numbers (SSNs). This article continues to discuss Flagstar Bank's vendor falling victim to the MOVEit Transfer attacks.

Cybernews reports "Fiserv Attack Exposes 837K Flagstar Bank Clients"

Submitted by grigby1