FIS Data Breach: What & How It Happened?
Twingate Team
•
Jun 20, 2024
In June 2023, FIS, a financial services company, experienced a data breach. The threat actor involved was CL0P, and the size of the leak remains unknown. The breach affected customers at several large banks. The vulnerability was discovered on August 11, 2023, and FIS has filed a notice of data breach with the Attorney General of Maine.
How many accounts were compromised?
The data breach impacted compromised the personal information of approximately 429,000 individuals.
What data was leaked?
The data exposed in the breach consisted of sensitive consumer information, including names and Social Security numbers.
How was FIS hacked?
The FIS data breach occurred due to a vulnerability in the MOVEit file transfer program, which allowed unauthorized access to sensitive consumer information, including names and Social Security numbers. The exact methods used by the hackers and any potential malware involved remain unclear.
FIS's solution
In response to the hack, FIS took several measures to secure its platform and prevent future incidents. This included suspending its use of the MOVEit file transfer program until all available patches were installed to eliminate the vulnerability. FIS also launched an investigation into the incident. Affected customers were notified through data breach notification letters, which explained the incident and the types of data affected. However, details regarding the removal of malware and backdoors, enhanced security protocols, and collaboration with cybersecurity experts remain unclear.
How do I know if I was affected?
FIS has notified customers believed to be affected by the breach. If you're an FIS customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.
What should affected users do?
In general, affected users should:
Change Your Passwords: Immediately update your passwords for any accounts that may have been compromised. Make sure the new passwords are strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on any affected accounts. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity and report it to the appropriate authorities or companies immediately.
For more specific help and instructions regarding FIS's data breach, please contact FIS support directly by filling out the contact form on their website.
Where can I go to learn more?
If you want to find more information on the FIS data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
FIS Data Breach: What & How It Happened?
Twingate Team
•
Jun 20, 2024
In June 2023, FIS, a financial services company, experienced a data breach. The threat actor involved was CL0P, and the size of the leak remains unknown. The breach affected customers at several large banks. The vulnerability was discovered on August 11, 2023, and FIS has filed a notice of data breach with the Attorney General of Maine.
How many accounts were compromised?
The data breach impacted compromised the personal information of approximately 429,000 individuals.
What data was leaked?
The data exposed in the breach consisted of sensitive consumer information, including names and Social Security numbers.
How was FIS hacked?
The FIS data breach occurred due to a vulnerability in the MOVEit file transfer program, which allowed unauthorized access to sensitive consumer information, including names and Social Security numbers. The exact methods used by the hackers and any potential malware involved remain unclear.
FIS's solution
In response to the hack, FIS took several measures to secure its platform and prevent future incidents. This included suspending its use of the MOVEit file transfer program until all available patches were installed to eliminate the vulnerability. FIS also launched an investigation into the incident. Affected customers were notified through data breach notification letters, which explained the incident and the types of data affected. However, details regarding the removal of malware and backdoors, enhanced security protocols, and collaboration with cybersecurity experts remain unclear.
How do I know if I was affected?
FIS has notified customers believed to be affected by the breach. If you're an FIS customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.
What should affected users do?
In general, affected users should:
Change Your Passwords: Immediately update your passwords for any accounts that may have been compromised. Make sure the new passwords are strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on any affected accounts. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity and report it to the appropriate authorities or companies immediately.
For more specific help and instructions regarding FIS's data breach, please contact FIS support directly by filling out the contact form on their website.
Where can I go to learn more?
If you want to find more information on the FIS data breach, check out the following news articles:
Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.
FIS Data Breach: What & How It Happened?
Twingate Team
•
Jun 20, 2024
In June 2023, FIS, a financial services company, experienced a data breach. The threat actor involved was CL0P, and the size of the leak remains unknown. The breach affected customers at several large banks. The vulnerability was discovered on August 11, 2023, and FIS has filed a notice of data breach with the Attorney General of Maine.
How many accounts were compromised?
The data breach impacted compromised the personal information of approximately 429,000 individuals.
What data was leaked?
The data exposed in the breach consisted of sensitive consumer information, including names and Social Security numbers.
How was FIS hacked?
The FIS data breach occurred due to a vulnerability in the MOVEit file transfer program, which allowed unauthorized access to sensitive consumer information, including names and Social Security numbers. The exact methods used by the hackers and any potential malware involved remain unclear.
FIS's solution
In response to the hack, FIS took several measures to secure its platform and prevent future incidents. This included suspending its use of the MOVEit file transfer program until all available patches were installed to eliminate the vulnerability. FIS also launched an investigation into the incident. Affected customers were notified through data breach notification letters, which explained the incident and the types of data affected. However, details regarding the removal of malware and backdoors, enhanced security protocols, and collaboration with cybersecurity experts remain unclear.
How do I know if I was affected?
FIS has notified customers believed to be affected by the breach. If you're an FIS customer and haven't received a notification, you may visit Have I Been Pwned to check your credentials.
What should affected users do?
In general, affected users should:
Change Your Passwords: Immediately update your passwords for any accounts that may have been compromised. Make sure the new passwords are strong and unique, not previously used on any other platform.
Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.
Enable Two-Factor Authentication (2FA): Activate 2FA on any affected accounts. Consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.
Monitor Your Accounts: Keep an eye on your accounts for any suspicious activity and report it to the appropriate authorities or companies immediately.
For more specific help and instructions regarding FIS's data breach, please contact FIS support directly by filling out the contact form on their website.
Where can I go to learn more?
If you want to find more information on the FIS data breach, check out the following news articles:
Solutions
Solutions
The VPN replacement your workforce will love.
Solutions