FIIG Securities

FIIG Securities, an Australian financial services firm, faces legal action after a cybersecurity breach resulted in the unauthorized access and exposure of sensitive information belonging to 18,000 clients. From March 2019 to June 2023, FIIG reportedly had inadequate cybersecurity defenses, which led to a hacker penetrating their IT network and extracting about 385GB of confidential data, including client details, over a period from May 19 to June 8, 2023. The leaked information was later discovered on the dark web, posing significant risks to the affected clients.

Source: https://www.csoonline.com/article/3845092/australian-financial-firm-hit-with-lawsuit-after-massive-data-breach.html

TPRM report: https://www.rankiteo.com/company/fiig-securities

"id": "fii946031525",
"linkid": "fiig-securities",
"type": "Breach",
"date": "3/2019",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"

{'affected_entities': [{'customers_affected': '18,000',
                        'industry': 'Finance',
                        'location': 'Australia',
                        'name': 'FIIG Securities',
                        'type': 'Financial Services Firm'}],
 'attack_vector': 'Unauthorized Access',
 'data_breach': {'data_exfiltration': 'True',
                 'number_of_records_exposed': '18,000',
                 'personally_identifiable_information': 'True',
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': 'Client Details'},
 'description': 'FIIG Securities, an Australian financial services firm, faces '
                'legal action after a cybersecurity breach resulted in the '
                'unauthorized access and exposure of sensitive information '
                'belonging to 18,000 clients.',
 'impact': {'brand_reputation_impact': 'Significant',
            'data_compromised': ['Client Details'],
            'identity_theft_risk': 'High',
            'legal_liabilities': 'Legal Action'},
 'initial_access_broker': {'data_sold_on_dark_web': 'True',
                           'reconnaissance_period': ['March 2019 to June '
                                                     '2023']},
 'motivation': 'Data Theft',
 'post_incident_analysis': {'root_causes': 'Inadequate Cybersecurity Defenses'},
 'regulatory_compliance': {'legal_actions': 'Legal Action'},
 'threat_actor': 'Unknown Hacker',
 'title': 'FIIG Securities Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Inadequate Cybersecurity Defenses'}

FIIG Securities

Have I Been Pwned: 113,000 explicit prompts from AI girlfriend platform exposed, many linked to user IDs

Banco de Bogota and Grupo Bancolombia: Hackers claim data breach at Colombian banks, exposure unverified

SUUMO, CHINTAI, HOME’S and Chintai EX: A large-scale data breach, including approximately 1 million email addresses, may have occurred from SUUMO, CHINTAI, At Home, Homes, Ouchino, and Chintai EX.