[ad_1]
Finastra, a London-based financial software company that serves most of the world’s major banks, confirmed it was investigating a data breach after a hacker claimed there had been a breach of the company’s internal file transfer platform.
In a statement provided to TechCrunch, Finastra spokeswoman Sofia Romano confirmed that the fintech giant detected what she calls “suspicious activity” related to its “internally hosted secure file transfer platform (SFTP)” on November 7.
hacking news, Reported for the first time Written by cybersecurity journalist Brian Krebs, it comes after someone on a well-known cybercrime forum claimed to be selling stolen files allegedly belonging to Finastra’s largest banking clients. In a since-deleted forum post, the hacker said he was in possession of 400 gigabytes of data from Finastra, including client files and internal documents.
In an incident disclosure shared with clients and obtained by Krebs, Finastra confirmed that data had been leaked from its systems. A Finastra spokesperson, who declined to share a copy of the disclosure with TechCrunch, said the company first informed customers about the incident on November 8 and kept them updated on what we do and don’t yet know about the data that was made public. ”
Finastra declined to name the compromised file transfer platform, but the data vendor claims that data stolen from the Finastra network was obtained from IBM Aspera, a file transfer software that allows organizations to move large files and data sets over the Internet.
When asked by TechCrunch, Finastra did not say how many customers were affected or what types of data were accessed in the breach.
“We are analyzing the affected data to identify the specific customers affected, while at the same time evaluating and reporting which of our products do not rely on the specific version of the SFTP platform that was compromised,” Romano, the Finastra spokesman, said in an email statement. “Not all customers are using the affected SFTP platform… so we are working as quickly as possible to exclude affected customers.”
Finastra added that the company is continuing to investigate the root cause of the data breach, but said that “preliminary evidence suggests that credentials may have been compromised.” This indicates that the organization has been compromised by stealing someone’s username and password. It is not yet known whether the system is protected with multi-factor authentication, which could prevent some credential theft attacks.
[ad_2]