Finastra Investigates Cybersecurity Incident Following Data Breach
/ 1 min read
Finastra investigates cybersecurity incident after data breach. The financial software company, which serves over 8,000 institutions globally, confirmed a security breach on November 7, 2024, involving compromised credentials that accessed its Secure File Transfer Platform (SFTP). While the investigation, supported by external cybersecurity experts, indicates that the breach was limited to the SFTP platform and did not affect all customers, the exact impact is still being assessed. A threat actor known as “abyss0” claimed to be selling 400GB of allegedly stolen data on a hacking forum, but Finastra has not confirmed whether this data is theirs. The company is reaching out directly to those impacted, and public disclosures are not anticipated. This incident follows a previous ransomware attack on Finastra in March 2020, which caused significant service disruptions.