MoneyGram has confirmed an information breach that uncovered delicate buyer information to hackers, forcing its providers offline for 5 days in September 2024.
the american Payment and money transfer platformwhich operates 350,000 places in 200 international locations and thru its cellular app and web site, revealed that hackers stole quite a lot of delicate buyer info.
This consists of transaction particulars, e mail and postal addresses, names, cellphone numbers, utility payments, authorities IDs and social safety numbers.
Get security alerts, expert tips – sign up for Kurt’s newsletter – CyberGi Report here
A girl on a desktop pc (Kurt “Cyberguy” Knutson)
What you might want to know
Bleeping pc First reported Information of MoneyGram’s cyberattack on October 5, noting that hackers used a social engineering assault on the corporate’s inside assist desk. On the time, the corporate didn’t disclose a lot details about the assault, saying, “After working with main exterior cybersecurity specialists, together with CrowdStrike, and coordinating with US legislation enforcement, most of our techniques are actually operational, and we now have resumed cash switch providers.”
In an e mail to the publication, MoneyGram additionally confirmed that it has “discovered no proof that this subject entails ransomware, nor do we now have any cause to consider that it has affected our brokers’ techniques. .”
Nonetheless, A Information on its websiteMoneygram has now given extra details about the cyber assault. The corporate says risk actors had beforehand accessed its community between September 20 and September 22. He discovered of the breach on September 27.
The lady with the cellphone (Kurt “Cyberguy” Knutson)
Massive free VPN data breach exposes 360 million records
What info was stolen?
Through the time Hackers had access Throughout MoneyGram’s community, they stole extremely delicate info together with client names, contact particulars (reminiscent of cellphone numbers, e mail addresses and postal addresses), dates of delivery, a restricted variety of social safety numbers, copies of government-issued identification . paperwork (reminiscent of a driver’s license), different identification paperwork (reminiscent of utility payments) and checking account numbers.
For a restricted variety of clients, MoneyGram says the hackers accessed MoneyGram Plus Rewards numbers, transaction particulars (reminiscent of dates and quantities) and legal investigation info (reminiscent of fraud instances). The sorts of info disclosed differ from individual to individual.
Lady engaged on laptop computer (Kurt “Cyberguy” Knutson)
Here’s what ruthless hackers stole from 110 million AT&T customers
6 methods to guard your self from an information breach
1. Allow two-factor authentication (2FA) on all accounts: Some of the efficient methods to guard your private and monetary info from hackers is to allow it Two-factor authentication wherever potential. It provides an additional layer of safety by requiring two types of verification earlier than granting entry to your account, reminiscent of a password and a one-time code despatched to your cellphone. Even when your password is stolen, 2FA can forestall hackers from entering into your accounts.
2. Monitor your monetary accounts frequently: After an information breach, particularly when delicate Financial information As transaction particulars and checking account numbers are compromised, you will need to frequently monitor your financial institution statements, bank card transactions and even small purchases. Search for unauthorized exercise, irrespective of how trivial it could appear, and report it to your financial institution or service supplier instantly.
With the MoneyGram breach, hackers accessed clients’ monetary transaction particulars, which may result in fraudulent or unauthorized transactions. By continuously reviewing your account statements, you’ll be able to catch any uncommon exercise early and take motion earlier than important losses happen.
3. Change your passwords and use robust, distinctive passwords: MoneyGram clients who’ve reused passwords throughout a number of accounts ought to replace their login info instantly. A robust password combines higher and decrease case letters, numbers and symbols, making it tougher for hackers to guess or crack. Think about using a Password manager To securely retailer and generate advanced passwords.
4. Join Identification Theft Safety: Provided that hackers stole Social Safety numbers, government-issued IDs and different delicate info within the MoneyGram breach, affected clients ought to take into account enrolling in id theft safety. These providers notify you if somebody tries to open new traces of credit score or loans in your identify, permitting you to take rapid motion to stop id theft. Moreover, you’ll be able to place fraud alerts or freezes in your credit score studies to stop unauthorized entry.
For these affected by the MoneyGram breach, the place personally identifiable info reminiscent of authorities IDs and Social Safety numbers have been compromised, signing up for id theft safety providers can supply an extra stage of safety. Check out my tips and top picks on how to protect yourself from identity theft.
Get FOX Business on the go by clicking here
5. Watch out for Phishing Assaults and Scams: After an information breach, there may be usually an escalation Phishing attacksThe place scammers attempt to reveal extra private info by posing as professional firms. All the time double-check the authenticity of emails, particularly these asking for delicate info. By no means click on on hyperlinks or obtain attachments from questionable sources, and confirm any requests for info by contacting the corporate immediately. As a result of the MoneyGram breach occurred via a social engineering assault, clients must be looking out for emails, cellphone calls or textual content messages pretending to be from MoneyGram or associated entities. All the time confirm any communication earlier than taking motion.
The easiest way to guard your self from malicious hyperlinks that set up malware, doubtlessly accessing your private info, is to put in antivirus software program on all of your units. This safety may provide you with a warning to phishing emails and ransomware scams, preserving your private info and digital belongings protected. Get my picks for 2024’s best antivirus security winners for your Windows, Mac, Android, and iOS devices.
6. Spend money on private information removing providers: Whereas no service guarantees to take away all your information from the Web, a removing service is nice if you wish to repeatedly monitor and automate the method of eradicating your info from tons of of websites over an extended time period. Check out my top picks for data removal services here.
The world’s largest stolen password database uploaded to the Criminal Forum
Kurt’s primary measures
Large tech firms are struggling to fend off cyber assaults. Each month, we hear a few new information breach that places the information of tens of millions of Individuals in danger, and more often than not, these companies get nothing greater than a slap on the wrist. In the meantime, people whose information is stolen undergo the implications for years to come back. MoneyGram and different firms ought to make investments extra of their cyber safety infrastructure to make sure that breaches like this don’t turn out to be commonplace.
Click here to get the Fox News app
Do you consider the legislation ought to impose stiff penalties on firms that fail to guard buyer information? Inform us by writing to us Cyberguy.com/Contact.
For extra of my tech ideas and safety alerts, subscribe to my free Cyberguy Report e-newsletter by visiting Cyberguy.com/Newsletter.
Ask Kurt a question or let us know what stories you want covered.
Observe Kurt on his social channels:
Solutions to essentially the most continuously requested CyberGuy questions:
New from Kurt:
Copyright 2024 CyberGuy.com. all rights reserved.
