Security News > 2023 > March > Australian FinTech takes itself offline to deal with cyber incident that caused data leak
Latitude Financial has blamed a supplier for leaking creds that caused vast PII leak Australian outfit Latitude Financial has taken itself offline, and even stopped serving customers, while it tries to clean up an attack on its systems.
Latitude said the attack on the vendor exposed credentials of its staff, which were used to log on to two other service providers it uses for matter such as identity verification.
In a Monday filing [PDF] Latitude revealed the attack is ongoing, so it has "Taken our platforms offline and are unable to service our customers and merchant partners."
Taking its services offline means major Australian retailers - including Apple - can't access Latitude's consumer credit products that they offer as an alternative payment mechanism.
Latitude has gone through the usual process of apologising, engaging investigators, and hiring third part services to protect customers' identities.
The Register is therefore watching this one closely as the identity of the major vendor is at least as important as the troubles Latitude and its customers are facing.
News URL
https://go.theregister.com/feed/www.theregister.com/2023/03/21/latitude_financial_cyber_attack_leak/
Related news
- Thousands of orgs at risk of knowledge base data leaks via ServiceNow misconfigurations (source)
- A data leak and a data breach (source)
- 5 Actionable Steps to Prevent GenAI Data Leaks Without Fully Blocking AI Usage (source)
- Pokemon dev Game Freak confirms breach after stolen data leaks online (source)
- Troubled US insurance giant hit by extortion after data leak (source)
- Interbank confirms data breach following failed extortion, data leak (source)