Cash App customer investment data hacked

In an SEC filing made on Monday, Cash App parent company Block, Inc., said it was working to contact roughly 8.2 million past and present customers of its investment services, as names, brokerage portfolio values ​​and account numbers were compromised in a data breach.

According to Block’s form 8-K, an employee who had regular access to the records during their employment downloaded customer records after leaving the company. The reports did not contain Cash App usernames or passwords, and the company said that Social Security numbers, birthdays, payment card info and most other types of personally identifiable information were not accessed.

How cybercriminals can leverage stolen Cash App data

Still, according to experts, the portfolio data accessed represents a serious compromise. Avivah Litan, a distinguished research vice president at Gartner, said that part of the idea with this type of hack might be to identify potentially worthwhile targets for further compromise.

“Using this compromised data, a hacker could determine which investors are worth targeting, based on their account values, and how to target them, based on their portfolio holdings and daily trading activity,” she said. “Further, they could integrate the compromised CashApp data with other previously stolen dark net data that potentially exists on the same individual to gain enough information – such as user IDs and passwords at other financial institutions or websites – to effectively socially engineer the user into transferring funds to a criminal account. ”

The idea that the attack was one step in a longer process was echoed by IDC research director Aaron Press, who said that the potential target – brokerage accounts – made sense, given the specific types of information that were stolen.

“There’s no guarantee that this will be of use, and it may not be of value,” he said, “but if someone were interested in attacking a brokerage account, then this would be a place to start.”

CSO is currently following this event and will post updates as they become available.

Copyright © 2022 IDG Communications, Inc.

Source

In an SEC filing made on Monday, Cash App parent company Block, Inc., said it was working to contact roughly 8.2 million past and present customers of its investment services, as names, brokerage portfolio values ​​and account numbers were compromised in a data breach.

According to Block’s form 8-K, an employee who had regular access to the records during their employment downloaded customer records after leaving the company. The reports did not contain Cash App usernames or passwords, and the company said that Social Security numbers, birthdays, payment card info and most other types of personally identifiable information were not accessed.

How cybercriminals can leverage stolen Cash App data

Still, according to experts, the portfolio data accessed represents a serious compromise. Avivah Litan, a distinguished research vice president at Gartner, said that part of the idea with this type of hack might be to identify potentially worthwhile targets for further compromise.

“Using this compromised data, a hacker could determine which investors are worth targeting, based on their account values, and how to target them, based on their portfolio holdings and daily trading activity,” she said. “Further, they could integrate the compromised CashApp data with other previously stolen dark net data that potentially exists on the same individual to gain enough information – such as user IDs and passwords at other financial institutions or websites – to effectively socially engineer the user into transferring funds to a criminal account. ”

The idea that the attack was one step in a longer process was echoed by IDC research director Aaron Press, who said that the potential target – brokerage accounts – made sense, given the specific types of information that were stolen.

“There’s no guarantee that this will be of use, and it may not be of value,” he said, “but if someone were interested in attacking a brokerage account, then this would be a place to start.”

CSO is currently following this event and will post updates as they become available.

Copyright © 2022 IDG Communications, Inc.

Source

More from author

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Related posts

Advertismentspot_img

Latest posts

Senators Urge FTC to Probe ID.me Over Selfie Data – Krebs on Security

Some of more tech-savvy Democrats in the U.S. Senate are asking the Federal Trade Commission (FTC) to investigate identity-proofing company ID.me for “deceptive statements”...

Personal Information of Nearly Two Million Texans Exposed

The personal information of nearly two million Texans was exposed for nearly three years due to a programming issue at the Texas Department of...

Critical VMware Bug Exploits Continue, as Botnet Operators Jump In

Recently uncovered VMware vulnerabilities continue to anchor an ongoing wave of cyberattacks bent on dropping various payloads. In the latest spate of activity,...

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!