MoneyGram says no evidence ransomware is behind recent cyberattack

News
By published

Recent attack was no ransomware strike, MoneyGram claims

MoneyGram
(Image credit: MoneyGram)

Two weeks after suffering a cyberattack and shutting down parts of its infrastructure, MoneyGram has revealed more details on the incident, confirming that, contrary to what many speculated, this was not a ransomware attack.

A letter sent to stakeholders in late September 2024 seen by BleepingComputer, explains MoneyGram called in CrowdStrike, law enforcement, and other cybersecurity professionals, to investigate the matter, and the conclusion was - this was no ransomware attack:

"After working with leading external cybersecurity experts, including CrowdStrike, and coordinating with U.S. law enforcement, the majority of our systems are now operational, and we have resumed money transfer services," the email allegedly reads. "We recognize the importance of system security as we take these actions. We restored our systems only after taking extensive precautionary measures. At this time, we have no evidence that this issue involves ransomware nor do we have any reason to believe that this has impacted our agents' systems."

No evidence of ransomware

MoneyGram is a global money transfer and payment services company that enables individuals and businesses to send and receive funds internationally. It offers services including peer-to-peer money transfers, bill payments, and money orders, with operations in over 200 countries and territories.

On September 20, its customers took to social media (X, Facebook, Reddit) to complain about services not working properly, the website being offline, and other worries. Three days later, the company responded to the claims, saying it was experiencing a network outage, and later confirmed it suffered a “cybersecurity issue.” In response to this issue, MoneyGram shut down parts of its IT systems, including both online and in-person transactions.

This led to the media, and customers, speculating that MoneyGram had suffered a ransomware attack, even though no threat actors claimed to be responsible for the attack.

Money transfer services are back online, MoneyGram concluded.

More from TechRadar Pro

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
Ransomware
Atos now says its systems weren't hit by a ransomware attack after all
Ransomware
Lee Enterprises blames cyberattack for encrypting critical systems as US newspaper outages drag on
sewage water treatment
Southern Water denies claims it offered $750,000 ransom to ransomware hackers
A digital themed isometric showing a neon padlock in the foreground, and a technological diagram of a processor logic board in the background.
MetLife denies hack after ransomware group claims attack
Image of laptop infected with malware
Ransomware criminals are now sending their demands...by snail mail?
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
Less than half of ransomware incidents end in payment - but you should still be on your guard
Latest in Security
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Lock on Laptop Screen
Medusa ransomware is able to disable anti-malware tools, so be on your guard
An abstract image of digital security.
Fake file converters are stealing info, pushing ransomware, FBI warns
Insecure network with several red platforms connected through glowing data lines and a black hat hacker symbol
Coinbase targeted after recent Github attacks
hacker.jpeg
Key trusted Microsoft platform exploited to enable malware, experts warn
IBM office logo
IBM to provide platform for flagship cyber skills programme for girls
Latest in News
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Cassian Andor looking nervously over his shoulder in Andor season 2
New Andor season 2 trailer has got Star Wars fans asking the same question – and it includes an ominous call back to Rogue One's official teaser
Ncuti Gatwa as The Fifteenth Doctor in Doctor Who
Disney+ drops new trailer for Doctor Who season 2 that promises an epic adventure across time and space
23andMe
23andMe is bankrupt and about to sell your DNA, here's how to stop that from happening
A phone showing a ChatGPT app error message
ChatGPT was down for many – here's what happened
AirPods Max with USB-C in every color
Apple's AirPods Max with USB-C will get lossless audio in April, but you'll need to go wired
More about security
Microsoft

"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Lock on Laptop Screen

Medusa ransomware is able to disable anti-malware tools, so be on your guard
An abstract image of digital security.

Fake file converters are stealing info, pushing ransomware, FBI warns
See more latest
Most Popular
An abstract image of digital security.
Fake file converters are stealing info, pushing ransomware, FBI warns
Microsoft
"Another pair of eyes" - Microsoft launches all-new Security Copilot Agents to give security teams the upper hand
Ncuti Gatwa as The Fifteenth Doctor in Doctor Who
Disney+ drops new trailer for Doctor Who season 2 that promises an epic adventure across time and space
Cassian Andor looking nervously over his shoulder in Andor season 2
New Andor season 2 trailer has got Star Wars fans asking the same question – and it includes an ominous call back to Rogue One's official teaser
23andMe
23andMe is bankrupt and about to sell your DNA, here's how to stop that from happening
Lock on Laptop Screen
Medusa ransomware is able to disable anti-malware tools, so be on your guard
hacker.jpeg
Key trusted Microsoft platform exploited to enable malware, experts warn
A screenshot from Indiana Jones and the Great Circle showing Indiana Jones
Indiana Jones and the Great Circle finally gets PS5 release date and I can't wait to don the fedora and crack the whip
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Tuesday, March 25 (game #387)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Tuesday, March 25 (game #653)