On August 14, 2023, Glacier Bank reported a data breach involving a business partner, Darling Consulting Group, due to a vulnerability in Progress Software's MOVEit secure file transfer tool, which occurred on May 31, 2023. The breach potentially exposed personal information including names, Social Security numbers, account numbers, and account balances, although there is no evidence that this information has been misused.
TPRM report: https://www.rankiteo.com/company/glacier-bank
"id": "gla655080425",
"linkid": "glacier-bank",
"type": "Vulnerability",
"date": "5/2023",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Banking',
'name': 'Glacier Bank',
'type': 'Financial Institution'},
{'name': 'Darling Consulting Group',
'type': 'Business Partner'}],
'attack_vector': 'Vulnerability Exploitation',
'data_breach': {'personally_identifiable_information': ['names',
'Social Security '
'numbers'],
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Personal Information',
'Financial Information']},
'date_detected': '2023-08-14',
'description': 'A data breach involving a business partner, Darling '
'Consulting Group, due to a vulnerability in Progress '
"Software's MOVEit secure file transfer tool.",
'impact': {'data_compromised': ['names',
'Social Security numbers',
'account numbers',
'account balances']},
'title': 'Glacier Bank Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': "Progress Software's MOVEit secure file transfer "
'tool'}