Finastra, a company that provides financial software and adjacent services to the world’s banking sector has revealed about a security incident.
The London-based company posted a statement in their website stating that it was infected with a ransomware strain. The fintech giant came to known about the intrusion into its systems when their staff detected a “potentially anomalous activity.”
The Chief Operating Officer of Finastra, Tom Kilroy stated that the company immediately took out several of their servers offline just as a precautionary method. They have also started investigation regarding the issue.
All the customers who were affected by the shutdown of the servers were sent notifications. The company assured their customers that the servers will be up and running by Monday.
Threat intel firm Bad Packets said that their internet-wide scans had found that the fintech company had run unpatched servers for a long time, leaving its systems exposed to attacks.
According to Bad Packets, Finastra ran outdated Pulse Secure VPN servers last year, and also ran outdated Citrix servers earlier this year.
Both server technologies were infected with severe vulnerabilities that were being exploited by both ransomware gangs and state-sponsored hackers for the past months.
Finastra has not revealed any details about what happened on its systems claiming that the investigations process is still going on. The company however claimed that they did not find any evidence of customer or employee data being and also they believe that their clients’ networks were not impacted.