Veridian, a non-profit financial institution based in Iowa, recently experienced a security breach when unknown attackers gained access to its online application system using customer data they already had. The company promptly notified affected users of the breach, which possibly allowed the attackers to obtain additional customer information by generating credit reports within the system. The unauthorized access occurred during the first two days of April 2023 and resulted in the compromise of sensitive customer data, such as name, address, social security number, date of birth, and account/loan numbers at other financial institutions, along with certain loan information like term and loan balance.
The breach affected almost 13,000 people, with the attackers also accessing victims’ driver’s license numbers and other non-driver ID card numbers, which posture serious security risks for the victims. Veridian conducted a thorough review of the affected application system and took action to prevent future attacks while ensuring the privacy of all affected individuals. Moreover, the company has offered impacted customers identity theft protection, and credit monitoring services. It is noteworthy that Veridian holds assets worth over $5 billion, employs over 900 people, and operates 30 branches across the US. The company accentuates that there is no indication that the attackers have misused the stolen data.
Story credit
Related stories:
