PlainsCapital Bank, a prominent independent bank in Texas and a subsidiary of Hilltop Holdings Inc, has confirmed that it has experienced a data breach related to the MOVEit vulnerability. This breach has put the personal information of over 16 million individuals at risk.
The bank issued an update on its official website, acknowledging the PlainsCapital Bank data breach and the involvement of hacker groups exploiting the MOVEit vulnerability. To ensure that customers are well-informed about the breach and the measures taken to prevent unauthorized use of their personal information, PlainsCapital Bank has been in close contact with its customers.
During their investigation, the company discovered that the compromised data from the PlainsCapital Bank data breach includes sensitive customer details such as social security and account numbers. However, there is currently no evidence of identity theft, fraudulent activity, or unauthorized access to customer accounts. PlainsCapital Bank reassures its customers that their information has not been misused in these ways.
As part of its commitment to protecting customers, the bank has implemented rigorous monitoring procedures to identify any signs of misuse or unauthorized activity. Additionally, PlainsCapital Bank has urged its customers to take extra precautions against identity theft and fraud by following security best practices. These measures include setting up account alerts, using PlainsCapital’s debit card controls, regularly monitoring credit reports, reviewing account statements for unauthorized transactions, updating online and mobile banking passwords, and blocking electronic access to social security numbers.
PlainsCapital Bank emphasizes the importance of reporting any fraudulent activity to law enforcement authorities. By promptly reporting such incidents, individuals can contribute to a safer and more secure banking environment.
The bank assures its customers that it is fully committed to their well-being and has allocated significant resources to resolve the situation and prevent future data breaches.
The MOVEit vulnerability, which is at the heart of the PlainsCapital Bank data breach, has been exploited by the notorious Clop ransomware group. This threat actor has been targeting personally identifiable information (PII) obtained from the databases of unsuspecting customers. The vulnerability, named CVE-2023-34362, was first discovered in May 2023. Since then, it has been exploited by hackers, leading to a series of data breaches over the past two months.
Progress Software, the company behind MOVEit, identified the vulnerability and released a patch at the end of May. However, other vulnerabilities associated with MOVEit have also been discovered, prompting advisories and updates.
The Clop ransomware group set a deadline of June 14th for affected companies to contact them. Unfortunately, the mitigation efforts did not go as planned, and the group listed 13 companies on their leak site. Since then, more companies have fallen victim to the MOVEit vulnerability. The Clop ransomware group has threatened to add additional victims to their leak site if the ransom amount is not paid by June 21.
The list of victims continues to grow exponentially, leaving us to wonder about the true extent of the attack. Some victims have publicly disclosed their involvement in the breach, while others have been revealed by the Clop ransomware group.
It is important to note that this report is based on internal and external research, and the information provided is for reference purposes only. Users should exercise caution and rely on their own discretion when using this information. The Cyber Express assumes no liability for the accuracy or consequences of using the information presented.