It’s always risky to quickly claim that there’s no evidence that customer data has been compromised in a data breach incident because you may find out later that it has been. While MoneyGram confirmed a breach weeks ago, they were careful not to make any claims about whether customer data was impacted. Now there’s an update to the cyberattack. TechRadar reports:
MoneyGram has confirmed it did lose sensitive customer data in the recent cyberattack against its business.
In a data breach notification letter sent to affected customers and published on the company’s website, hackers were able to access MoneyGram’s networks for two days, between September 20 and September 22.
During that time, they exfiltrated people’s names, phone numbers, email addresses, postal addresses, dates of birth, Social Security Numbers, copies of government-issued documents (for example, driver’s licenses), miscellaneous identification documents (utility bills, and such), bank account numbers, MoneyGram Plus Rewards numbers, transaction information (dates, amounts, and more), and criminal investigation information (such as fraud).
Read more at TechRadar.
