Fintech giant Revolt suffered from a high targeted cyberattack, on Sunday, September 11, 2022, allowing threat actors to compromise 50,150 accounts (.16% of Revolt’s customers). Revolt said in a statement that it immediately identified & isolated the attack, and that impacted customers have been notified.
“We have contacted the impacted individuals by email with further information regarding the types of data that may have been exposed. [...] We take incidents such as these incredibly seriously, and we would like to sincerely apologise to any customers who have been affected by this incident as the safety of our customers and their data is our top priority at Revolut.”
In the email that Revolut sent to its customers, the fintech giant stated that its customers’ data is safe and that no card details, PINs, or passwords were accessed. However, according to the State Data Protection Inspectorate in Lithuania, where Revolut is licensed to operate as a bank, attackers potentially accessed the following data: email addresses, full names, postal addresses, phone numbers, limited payment card data, and various types of data related to the users’ accounts.
It is currently unclear how the threat actors were able to breach Revolut. Experts are speculating that Revolut employees were the target of a phishing attack, enabling the attackers to obtain access to the company’s infrastructure.
Based on the type of data accessed, cybercriminals will most likely use this information to perform social engineering, identify theft, and phishing attacks. It currently seems like some customers are already being targeted. Users have shared screenshots on Twitter, with messages from scammers stating “Your new debit card is on the way to your new updated address, if you did not request a new card follow the steps via revoult-card-cancel[.]com”
Mitigation tips:
Revolut customers should keep an eye out for suspicious activity, including emails, phone calls or messages that come from unknown senders.
