October 6, 2024 at 11:50AM
MoneyGram suffered a cyberattack causing a five-day system outage in September. While customers suspected ransomware, MoneyGram denies evidence of it. Investigation with external cybersecurity experts and law enforcement confirmed no ransomware involvement, with systems now operational. The attack, initiated through social engineering on the company’s internal help desk, was blocked before causing extensive damage.
Based on the meeting notes, it appears that MoneyGram experienced a cyberattack that led to a substantial outage in September. While the cause of the attack was not initially confirmed to be ransomware, MoneyGram has stated that after extensive investigations with cybersecurity professionals and law enforcement, they found no evidence of ransomware being behind the breach.
The attack was believed to have started with a social engineering attack on the company’s internal help desk, which allowed threat actors to access MoneyGram’s network using an employee’s credentials. However, the attack was detected and thwarted before major damage occurred.
Despite the sophistication of the attack, MoneyGram has restored most of its systems and resumed money transfer services following extensive precautionary measures. The company emphasized the importance of system security and claimed that there is no evidence to suggest that the incident involved ransomware or impacted their agents’ systems.
MoneyGram’s response to the cyberattack appears to have involved collaboration with leading external cybersecurity experts, including CrowdStrike, and coordination with U.S. law enforcement. However, the company has not publicly attributed the attack to any specific threat actor at this time.
If you need further information about this incident or any other undisclosed attacks, you can reach out to MoneyGram confidentially via Signal at 646-961-3731 or at [email protected].
It’s worth noting the similarities between this attack and previous attacks conducted by a hacker collective known as Scattered Spider. However, MoneyGram has not publicly attributed the attack to any specific threat actor or group.