SecurityWeek reports:
British fintech giant Finastra last week started sending written notifications to individuals who had their personal information stolen in a data breach.
The incident came to light in mid-November 2024, after a threat actor offered on an underground forum data allegedly stolen from the company’s systems. The hacker claimed the theft of 400 gigabytes of data.
At the time, Finastra acknowledged the data breach, saying that the attacker compromised an internal file-transfer application used by some of its customers, but refrained from sharing information on the scope of the incident, citing the ongoing investigation.
On February 12, however, the fintech firm informed the Massachusetts Office of Consumer Affairs and Business Regulation (OCABR) that it was sending data breach notifications to 65 Massachusetts residents, informing them that personal information was compromised in the incident.
Read more at SecurityWeek.
