Truist Financial Details

    Organization Logo

    Truist Financial

    Charlotte, North Carolina52000 employees • Financial services

    Industry

    Financial services

    Security Incidents

    1

    Truist Financial Corporation is an American bank holding company headquartered in Charlotte, North Carolina. The company was formed in December 2019 as the result of the merger of BB&T and SunTrust Banks.

    Security Incidents

    Truist Financial Breach of Oct 2023
    Severity Score
    Significant to High

    Type

    Data Breach

    Summary

    In October 2023, Truist Bank experienced a cyberattack resulting in a data breach, with stolen information subsequently posted for sale on a hacking forum by a threat actor identified as Sp1d3r. The compromised data reportedly includes sensitive details of 65,000 employees, bank transactions, account numbers, balances, and IVR funds transfer source code. While Truist has taken measures to secure their systems and involved outside security consultants and law enforcement, they have not verified the authenticity of the data being sold. Despite the breach, Truist has reported no evidence of fraud...
    Show more

    Severity

    In October 2023, Truist Bank, one of the top-10 commercial banks in the U.S., experienced a cyberattack where a threat actor known as Sp1d3r claimed to have stolen sensitive data, including information on 65,000 employees, bank transactions, and source code for the bank’s IVR system. This data breach is significant due to the potential exposure of financially sensitive information and company proprietary technology, affecting both employees and clients. Though the bank acted swiftly to contain the incident and there is no current evidence of fraud, the sophistication of the attack and the larg...
    Show more

    Impact

    In October 2023, Truist Bank experienced a significant cyber incident classified as a data breach. During the breach, sensitive customer data such as names, account numbers, and transaction details were exposed, impacting the personal information of approximately 65,000 employees as well. Notably, source code for the bank's Interactive Voice Response (IVR) system used for transferring funds was also compromised. Although services were not reported to be taken offline, the breach's exposure of both customer and internal company data, including proprietary source code, represents a severe risk t...
    Show more

    KEEP YOUR ENVIRONMENT SECURE

    Weak credentials are the leading cause of breaches. Beyond Identity can help.

    See MFA exploits in action
    Watch how adversaries exploit companies in quick videos