What sensitive information was compromised in the breach?

The breach compromised sensitive information of over 750,000 individuals, including names, addresses, dates of birth, Social Security numbers, driver’s license numbers, government-issued identification numbers, financial account information, telephone numbers, and credit and/or debit card numbers.

Which financial institutions were impacted by the breach?

The data breach at FISC impacted numerous financial institutions, including but not limited to Hodge Bank & Trust Co., American Bank, Inc., First National Bank in DeRidder, Lakeside Bank, Jackson Parish Bank, Heritage Bank of St Tammany, Concordia Bank & Trust Company, and many more.

Incident

Financial Institution Service Corp. repots MOVEit related data breach

Q: What caused the data breach at Financial Institution Service Corp.?

The data breach at Financial Institution Service Corp. was caused by a critical vulnerability within the MOVEit file-transfer application. Progress Software made a public announcement regarding this vulnerability on May 31, 2023, prompting immediate action from FISC to address the issue and protect against unauthorized access.

published: Sept. 27, 2023

Learn More

Financial Institution Service Corp. (FISC) reported a data breach caused by a critical vulnerability within the MOVEit file-transfer application.

On May 31, 2023, Progress Software made a public announcement regarding a vulnerability present within MOVEit, prompting swift action from FISC upon learning of this vulnerability. The company installed all available patches and implemented comprehensive measures to mitigate the potential threats posed by unauthorized access. Additionally, FISC launched a thorough investigation to evaluate the impact.

This flaw had been exploited by hackers, compromising the personal data of over 750,000 individuals. The breach exposed consumers' sensitive details, including:

names,
addresses,
dates of birth,
Social Security numbers,
driver’s license numbers,
government-issued identification numbers,
financial account information,
telephone numbers,
credit and/or debit card numbers.

FISC explicitly noted that the incident impacted numerous financial institutions listed below:

Hodge Bank & Trust Co.,
American Bank, Inc.,
First National Bank in DeRidder,
Lakeside Bank,
Jackson Parish Bank,
Heritage Bank of St Tammany,
Concordia Bank & Trust Company,
First Liberty Bank,
Farmers State Bank & Trust Company,
The Cottonport Bank,
Citizens Bank & Trust Co.,
RiverHills Bank,
Gibsland Bank & Trust,
Sabine State Bank,
Anthem Bank & Trust,
Delta Bank,
Louisiana National Bank,
Vermilion Bank,
Security State Bank of Oklahoma,
Winnsboro State Bank & Trust Company,
Bank of Moundville,
Merchants & Planters Bank,
American Bank & Trust Company,
Bank of Oak Ridge,
Resource Bank,
Bank of Winnfield and Trust Company,
Homeland Bank,
Crescent Bank,
Marion State Bank,
Plaquemine Bank and Trust Co.,
Peoples Bank,
City Bank and Trust Company,
Washington State Bank,
Metairie Bank,
Jonesboro State Bank,
Caldwell Bank and Trust,
Citizens Progressive Bank.

On September 22, 2023, Financial Institution Service Corporation initiated the distribution of data breach letters to all individuals impacted by this recent data security incident, providing victims with a comprehensive list of the compromised information pertaining to them.

Financial Institution Service Corp. repots MOVEit related data breach

Read More
ALEX Protocol reports major breach, $8.37 Million Loss
Temple Terrace Fire Department reports MOVEit related data …
Singapore Traffic Police data exposed after ransomware attack …
Franklin Templeton Investments Announces Data Breach stemming from …
FTX crypto exchange reports data breach caused by …