Zions Bancorporation, a multi-bank operator, suffered a cyberattack on August 25, 2025, executed by the group Hider_Nex via a DDoS attack on its website. While DDoS attacks typically disrupt services without data theft, this incident escalated into a data breach, exposing sensitive customer information—including names, addresses, credit/debit card numbers, CVV codes, and expiration dates. The breach affected thousands of bank customers, with the attack potentially used as a diversion to exploit system vulnerabilities.The breach was formally disclosed to the Texas Attorney General’s office on September 9, 2025, and affected customers were notified via mail. The compromised financial data poses significant risks of identity theft, fraudulent transactions, and reputational damage to Zions Bancorporation. Customers were advised to monitor accounts, place fraud alerts, and exercise caution against phishing attempts. The incident underscores the dual threat of service disruption and data exfiltration, amplifying the attack’s severity.
Source: https://www.claimdepot.com/data-breach/zions-bank-2025
TPRM report: https://www.rankiteo.com/company/zions-bancorporation
"id": "zio4202542091025",
"linkid": "zions-bancorporation",
"type": "Cyber Attack",
"date": "8/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'Several thousand (exact number '
'undisclosed)',
'industry': 'Banking/Financial Services',
'location': 'United States (headquartered in Salt Lake '
'City, Utah)',
'name': 'Zions Bancorporation',
'type': 'Financial Institution (Bank Holding '
'Company)'}],
'attack_vector': 'DDoS (likely used as a distraction for unauthorized access '
'or exploitation of system vulnerabilities)',
'customer_advisories': 'Notifications sent via mail; public guidance provided '
'for affected individuals.',
'data_breach': {'data_exfiltration': 'Likely (data exposed in breach)',
'number_of_records_exposed': 'Several thousand (exact number '
'undisclosed)',
'personally_identifiable_information': ['Names',
'Addresses',
'Credit/Debit Card '
'Numbers',
'CCV Codes',
'Expiration Dates'],
'sensitivity_of_data': 'High (includes payment card details '
'and PII)',
'type_of_data_compromised': ['Personally Identifiable '
'Information (PII)',
'Financial Data']},
'date_detected': '2025-08-25',
'date_publicly_disclosed': '2025-09-09',
'description': 'Zions Bancorporation, operator of multiple banks, suffered a '
'distributed denial-of-service (DDoS) attack claimed by the '
'cybercriminal group Hider_Nex on Aug. 25, 2025. The attack '
'disrupted online services and was accompanied by a data '
'breach exposing customer names, addresses, and financial '
'information (including credit/debit card numbers, CCV codes, '
'and expiration dates). The breach was disclosed to the Texas '
"Attorney General's office on Sept. 9, 2025, with "
'notifications sent to affected customers via mail. The total '
'number of impacted individuals is estimated to be several '
'thousand.',
'impact': {'brand_reputation_impact': 'Likely negative (public disclosure of '
'breach and DDoS)',
'data_compromised': ['Names',
'Addresses',
'Financial information (credit/debit card '
'numbers, CCV codes, expiration dates)'],
'downtime': 'Yes (proof provided via external uptime monitoring '
'service)',
'identity_theft_risk': 'High (financial and PII exposed)',
'legal_liabilities': 'Potential (exposure of sensitive financial '
'data)',
'operational_impact': 'Disruption of online services; potential '
'cover for unauthorized access',
'payment_information_risk': 'High (credit/debit card details, CCV '
'codes, expiration dates compromised)',
'systems_affected': ['Website (downtime due to DDoS)']},
'recommendations': ['Monitor financial accounts and credit reports for signs '
'of identity theft.',
'Consider placing fraud alerts or credit freezes with '
'major credit bureaus.',
'Be cautious of unsolicited emails or phone calls '
'requesting personal information.'],
'references': [{'source': 'Zions Bancorporation Official Website'}],
'regulatory_compliance': {'regulatory_notifications': ['Texas Attorney '
"General's office"]},
'response': {'communication_strategy': 'Customer notifications via mail; '
'public advisory for monitoring '
'financial accounts and credit reports',
'incident_response_plan_activated': 'Yes (disclosures to '
'state/federal authorities '
'and customer notifications)',
'law_enforcement_notified': "Yes (Texas Attorney General's "
'office)'},
'threat_actor': 'Hider_Nex',
'title': 'Major Cyberattack on Zions Bancorporation Involving DDoS and Data '
'Breach',
'type': ['Distributed Denial-of-Service (DDoS)', 'Data Breach']}