LockBit ransomware attack stole data on millions of Infosys McCamish users


When LockBit ransomware affiliates struck Infosys McCamish Systems (IMS) in late 2023, they did not steal sensitive information on some 57,000 people, as was initially thought. Instead, the threat actors stole valuable intel on more than six million people, a new report the IMS shared with the US authorities has said.

The type of information stolen from people varies from one individual to the next, but in general, the threat actors stole people’s Social Security Numbers (SSN), birth dates, medical information, biometric data, email addresses, passwords, Driver’s License numbers, state ID numbers, financial account information, payment card information, passport numbers, Tribal ID numbers, and US military ID numbers.

Read more…
Source: MSN News


Sign up for our Newsletter


Related:

  • UK: Personal data stolen in cyber-attack on council

    January 16, 2025

    Gateshead Council said it is not known how many residents have been affected by the attack, which happened in the early hours of 8 January. Officials at the authority have advised people to watch out for phishing emails or fraudulent activity, and to change passwords if they are concerned about suspicious activity. The council said it ...

  • Millions of Vinted, Spotify and Tinder users’ data could be compromised in global hack

    January 10, 2025

    Millions of users of popular apps such as Vinted, Spotify, Candy Crush and Tinder may have had their sensitive location data stolen by an unknown hacker who has posted details on a Russian-language site popular with cyber-criminals. In what is being treated as a major international data breach, it is being reported that hackers have ...

  • US state sues T-Mobile over 2021 data breach which leaked data of millions

    January 7, 2025

    As part of Washington’s lawsuit, the state claims T-Mobile failed to ‘adequately secure sensitive personal information of more than 2 million Washingtonians’. This failure, the state claims, left those consumers vulnerable to fraud and identity theft. The suit claims that the breach was ‘entirely avoidable’ and explains T-Mobile had years to fix key vulnerabilities in its ...

  • Italian digital identity provider suffers data breach, 5.5M customers affected

    January 7, 2025

    InfoCert has had millions of its customers’ personal data stolen and put up for sale. A leading European certification authority and provider of digital identity services such as Italy’s SPID (Public Digital Identity System), InfoCert posted a public notice on its website detailing the data breach on December 27. However, the notice has since been taken ...

  • ICAO ‘investigating’ security breach after hacker claims theft of personal data

    January 7, 2025

    UN aviation agency ‘investigating’ security breach after hacker claims theft of personal data The International Civil Aviation Organization (ICAO), a United Nations agency that defines international operating standards for civil aviation, has confirmed it’s investigating a cybersecurity incident. In a statement published on Monday, ICAO said it is “actively investigating reports of a potential information security ...

  • U.S. Treasury Department Says Systems Hacked by China-Backed Actor

    December 30, 2024

    The Treasury Department told lawmakers Monday that a state-sponsored actor in China hacked its systems, accessing several user workstations and certain unclassified documents. The treasury was informed on Dec. 8 by a third-party software service provider, BeyondTrust, that a threat actor used a stolen key to remotely access certain workstations and unclassified documents, according to a ...