Payment card giant Total System Services (TSYS) has fallen victim to a cyber attack using ransomware Conti. According to the portal KrebsOnSecurity, after the incident, the hackers published a lot of data stolen from the company on the Internet, and promised to publish even more in the near future.
Operators of the ransomware Conti (also known as Ryuk) have released more than 10 GB of data allegedly stolen from TSYS networks. According to criminals, published information represents only 15% of the total data.
Columbus, Ga.-based TSYS, the third-largest third-party payment processor for financial institutions in the U.S., helps to process payments, merchant services and other solutions such as prepaid debit cards and payroll cards. The company was acquired by Global Payments Inc. in 2019.
TSYS representatives said the malware did not compromise the customer’s bank card details, and the incident was limited to the administrative areas of its business.
“We were faced with a ransomware attack affecting the support systems for certain corporate back office functions of the legacy commercial enterprise TSYS. We immediately stopped suspicious activity and our business operations were not affected, ”TSYS explained.
According to the cybercriminals, the attack targeted TSYS’s Cayan business unit. Conti claims that credit card details have been compromised, but TSYS denies this. The company also declined to disclose whether it paid the ransom money.