"Flaw in Revolut Payment Systems Exploited to Steal $20 Million"

Organized criminal groups exploited a vulnerability in Revolut's payment systems and stole more than $20 million, according to the Financial Times, which cited sources knowledgeable about the situation. Over 30 million customers worldwide are served by Revolut, a privately held financial technology firm. It is licensed and managed by the Bank of Lithuania and has its headquarters in London. In September 2022, the business experienced a data breach that affected 50,150 customers globally. The attackers stole the names, addresses, email addresses, phone numbers, a portion of the payment card data, and account information of these customers. A few days later, some Revolut users complained online that they began receiving SMS phishing messages designed to take financial and personal information. According to unidentified sources cited by the Financial Times, the newly disclosed cash grab occurred in early 2022. This article continues to discuss the exploitation of a vulnerability in Revolut's payment systems by criminal groups. 

Help Net Security reports "Flaw in Revolut Payment Systems Exploited to Steal $20 Million"