Global online brokerage firm Infinox has allegedly become the latest victim of a ransomware attack, with the Arkana ransomware group claiming responsibility. Infinox, a significant player in the financial sector with an estimated revenue of $650 million, offers CFD and FX trading to a worldwide clientele and is known for its partnership with the Alpine F1 Team. The attackers claim to have exfiltrated a substantial amount of sensitive data.
The ransomware group alleges to have accessed and stolen approximately 50GB of data. This reportedly includes Know Your Customer (KYC) information for over 202,000 submissions and details pertaining to more than 163,000 customers. The compromised data allegedly consists of highly sensitive personal identifiable information (PII) such as full names, dates of birth, document numbers, images of IDs, driver’s licenses, and passports, along with metadata and server logs containing IP addresses and user agents.
This alleged breach poses a significant threat to Infinox’s clients, potentially exposing them to identity theft and financial fraud. The incident also raises concerns about the security measures in place at the brokerage firm, especially given its prominent position in the financial industry and its recent fine by the UK’s Financial Conduct Authority (FCA) for reporting failures. The Arkana group has started a countdown for the payment of a ransom.
