U.S. cash switch big MoneyGram has confirmed that hackers stole its prospects’ private data and transaction information throughout a cyberattack final month.
The corporate mentioned in an announcement Monday that an unauthorized third occasion “accessed and purchased” buyer information in the course of the cyberattack on September 20. The cyberattack — the character of which stays unknown — sparked a week-long outage that resulted within the firm’s web site and app falling offline.
MoneyGram says it serves over 50 million folks in additional than 200 international locations and territories every year.
In its assertion Monday, MoneyGram mentioned its investigation is in its “early levels” and is working to find out which customers had been affected by this challenge. The corporate didn’t say what number of prospects could be affected, and a MoneyGram spokesperson didn’t instantly reply to a request for remark.
The stolen buyer information consists of names, cellphone numbers, postal and electronic mail addresses, dates of delivery, and nationwide identification numbers. The info additionally features a “restricted quantity” of Social Safety numbers, and authorities identification paperwork, resembling driver’s licenses, and different paperwork that include private data, like utility payments, and checking account numbers. MoneyGram mentioned the sorts of stolen information will range by particular person.
MoneyGram mentioned that the stolen information additionally included transaction data, resembling dates and quantities of transactions, and, “for a restricted variety of customers, legal investigation data (resembling fraud).”
information.killnetswitch beforehand reported that MoneyGram had subsequently notified U.Ok. information safety regulators of a data breach as required below U.Ok. legislation.