P2020-ND-179

The Organization is a subsidiary of GAIN Capital Holdings Inc.; the latter provides data processing and hosting services to the Organization. On April 14, 2020, an external threat actor gained access to the service provider?s network and created user accounts with administrative privileges. This enabled the threat actor to access servers which include customer personal information. The threat actor ran several queries against client databases, and also extracted a zip file that may contain some or all of the results of the queries against client databases. The breach was discovered on April 15, 2020 when daily system monitoring flagged suspicious activity. The breach was ended on April 18, 2020.

File Type: pdf
File Size: 616 KB
Categories: 2020