Flagstar Bank
Flagstar Bank is informing 837,390 US clients that threat actors breached the third-party service provider Fiserv, exposing their personal information.
According to the data breach notification given to the impacted clients, the event involved vulnerabilities found in MOVEit Transfer, a file transfer programme that our vendor uses to support services it offers to Flagstar and its connected institutions.
The banking institution emphasised that the MOVEit bug did not affect any of Flagstar Bank's systems or its capacity to provide customers with services.
Flagstar initiated an inquiry into the event to ascertain the extent of the security incident as soon as it was made aware of the data breach.
Source: https://securityaffairs.com/152143/data-breach/flagstar-bank-data-breach-2.html
"id": "FLA2323151023",
"linkid": "flagstar-bank",
"type": "Breach",
"date": "10/2023",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"