Skip to content

Supply-chain ransomware attack causes outages at over 60 credit unions

Over sixty credit unions in the United States have been taken offline due to a ransomware attack on their technology provider, Trellance. Trellance is the parent company of FedComp, which offers software and services to credit unions. Ongoing Operations, a unit of Trellance specializing in disaster recovery and business recovery, was also affected. The attack, which occurred on November 26, prompted Ongoing Operations to take immediate action and notify impacted customers. While there is currently no evidence of information misuse, there are concerns about sensitive data potentially being accessed by hackers. Affected credit unions, such as the Mountain Valley FCU, are still working to get their systems back online. It is important to note that this attack targeted a service provider rather than the credit unions themselves, highlighting the cascading impact of a supply-chain attack. Researchers claim that the attack exploited the CitrixBleed vulnerability on an unpatched Cisco NetScaler device. The National Credit Union Administration is coordinating with the affected credit unions to address the aftermath of the attack.

Key Points:
1. Over sixty credit unions in the US have experienced downtime due to a ransomware attack on their technology provider, Trellance.
2. Trellance is the parent company of FedComp, which provides software and services to credit unions.
3. Ongoing Operations, a unit of Trellance specializing in disaster recovery, was also affected by the attack.
4. While there is no evidence of information misuse, concerns remain about the potential access of sensitive data by hackers.
5. The attack targeted a service provider, emphasizing the cascading impact of a supply-chain attack.

Leave a Reply

Your email address will not be published. Required fields are marked *