The Church of Jesus Christ of Latter-day Saints revealed yesterday that it was the target of a cyber attack in March 2022 that led to the theft of personal data.
The church, also known as the Mormon Church, said it had detected unauthorised activity on 23 March in certain computer systems that impacted the personal data of some of its members, employees, contractors, and friends.
RELATED RESOURCE
Cyber resiliency and end-user performance
Reduce risk and deliver greater business success with cyber-resilience capabilities
The personal data involved in the breach was related to those who either had registered online accounts with the church or had their personal information stored by the organisation because they were employed by it.
This included usernames, membership record numbers, full names, gender, email addresses, birthdates, mailing addresses, phone numbers, and preferred language. The affected data didn’t include the donation history or any banking information associated with online donations, it said.
“We immediately notified federal law enforcement authorities in the United States and were asked to keep the incident confidential to protect the integrity of the investigation,” said the church. “This instruction was lifted on 12 October 2022, and we notified affected individuals.”
It added that US federal law enforcement authorities suspect that the intrusion was part of a pattern of state-sponsored cyber attacks aimed at organisations and governments around the world that are not intended to cause harm to individuals.
Since the breach was discovered, the church said it has been working with US federal law enforcement authorities and third-party cyber security experts to establish the origin, nature, and scope of this incident, and to mitigate possible ramifications.
The church added that law enforcement authorities believe that the risk of the stolen information being used to harm individuals is low. The monitoring efforts from the authorities haven’t identified any attempts of harmful use either.
“Protecting the confidential information of our members, employees, contractors, and friends is critical,” the church added. “We continue to do all we can to ensure such information is safeguarded.”
It advised those who have been affected to remain vigilant about the security of their personal data by monitoring personal accounts, frequently changing passwords, selecting strong and different passwords for every account, and taking action on any suspicious activity.
“This breach against the Church of Jesus Christ of Latter-day Saints highlights that no organisation is immune to cyber attacks,” said Julia O’Toole, CEO at MyCena Security Solutions, to IT Pro.
“While it’s positive that no financial information was compromised, the data stolen can still be used to perform phishing attacks and be sold on the dark web to build profiles on the victims and tie it to other pieces of data linked to them that is already available.”
-
Bigger salaries, more burnout: Is the CISO role in crisis?In-depth CISOs are more stressed than ever before – but why is this and what can be done?
-
Cheap cyber crime kits can be bought on the dark web for less than $25News Research from NordVPN shows phishing kits are now widely available on the dark web and via messaging apps like Telegram, and are often selling for less than $25.
-
Capita handed £50m London police contract weeks after losing pension dataNews The outsourcer will provide digital fraud reporting services after its cyber incident disclosure drew criticism
-
Supercharge trust for operationsWhitepaper Innovating through uncertainty
-
Western Digital suffers cyber attack, shuts down systemsNews Customers are taking to Twitter to report they’re unable to log into their storage products through Western Digital’s online portal
-
Lazarus blamed for 3CX attack as byte-to-byte code match discoveredNews Additional analysis suggested 3CX developer teams ignored "red flags"
-
Some GitHub users must take action after RSA SSH host key exposedNews One cloud security expert likened the incident to the infamous HeartBleed bug from 2014
-
Latitude hack now under state investigation as customers struggle to protect their accountsNews The cyber attack has affected around 330,000 customers, although the company has said this is likely to increase
-
Four-year-old iframe flaw allows hackers to steal Bitwarden passwordsNews The password manager has known about the issue since 2018, publicising it in a report in 2018
-
WH Smith hit by cyber attack, current and former staff data accessedNews The company stated that it is notifying staff members who have been affected
