The MoneyGram attack exposed a wealth of sensitive customer data

An unnamed attacker stole sensitive customer data and transaction information during a cyberattack on global money transfer provider MoneyGram in September, the company said in a statement Monday opinion.

The attacker hacked into MoneyGram’s network between September 20 and 22 and stole customer data, the company said. Following the attack, there was a days-long outage as MoneyGram’s remediation efforts took some systems offline and halted transactions until September 25.

The attack highlighted the often far-reaching effects of cyberattacks. MoneyGram is one of the largest money transfer services in the world, operating in more than 200 countries and territories at more than 430,000 locations around the world.

MoneyGram initially called the attack a Network failure in a September 21st post on the social platform X, but on September 23rd it pointed out a Cyber ​​security problem have an impact on certain systems. “Our systems are back online and we have resumed normal business operations,” the company said in its statement Monday.

MoneyGram has not explained how the attacker gained access to its systems or whether ransomware was involved. The company did not respond to a request for comment.

The company said the investigation into the attack was ongoing. However, on September 27, it discovered that an attacker had stolen a lot of sensitive customer information, including names, bank account numbers, transaction information, MoneyGram Plus Rewards numbers, contact information, dates of birth, Social Security numbers, and copies of government-issued IDs.

“The type of information affected varied depending on the individual affected,” MoneyGram said in the statement. The Dallas-based company has not said how many people have been affected.

MoneyGram confirmed that it is cooperating with law enforcement and that third-party cybersecurity experts are assisting in the investigation. The company announced last month that it was working through a backlog of customer transactions.