Arizona-based Western Alliance Bank experienced a security breach after an attack on a third-party file transfer program which compromised personal data of 21,899 individuals. The attack, which occurred between October 12 and 24, led to unauthorized access and exfiltration of names, Social Security numbers, birthdates, driver's license numbers, tax identification numbers, passports, and financial account numbers. The Clop ransomware operation claimed responsibility, alleging the exploit was via a vulnerability in the Cleo file sharing tool. The incident's ramifications extended to other companies such as Hewlett Packard Enterprise and Thomson Reuters, prompting further investigations.
Source: https://www.scworld.com/brief/cleo-hack-impacts-almost-22k-western-alliance-bank-clients
"id": "wes445032025",
"linkid": "western-alliance-bank",
"type": "Ransomware",
"date": "3/2025",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"