Extensive Citizens Financial Group, Frost Bank breaches claimed by Everest ransomware

Cybernews reports that major U.S. banks Citizens Financial Group and Frost Bank were allegedly compromised by the Everest ransomware-as-a-service operation, which has threatened to expose troves of data pilfered from both financial institutions by Apr. 26.

Nearly 3.4 million records were purportedly pilfered from Citizens Financial, with samples revealing full names, home addresses, account numbers, and internal document flags, while almost 250,000 customers' data were claimed to have been stolen from Frost Bank, whose samples showed Social Security numbers, tax identification numbers, mortgage interest rates, and other information on top of names and addresses.

Citizens Bank has disclosed having its masked test data, including limited customer information, stolen following an attack against a third-party vendor but denied the compromise of its systems. Additional safeguards have already been implemented by Citizens amid an ongoing investigation into the incident. Such a development comes after Everest was reported to have targeted Nissan, Collins Aerospace, Iberia Airlines, Under Armour, and BMW.