Initially reported by Security Affairs’ Pierluigi Paganini, Edenred, a company specializing in prepaid corporate services, identified a malware infection on some of their computer systems. Immediately after identifying the infection, Edenred implemented countermeasures to contain the infection and minimize its impact. Edenred has also begun communications with relevant governmental authorities and regulators.
Seeing that Edenred is a leader in payment solutions, there is concern in just what this impact really entails. There is no mention of data exfiltration or breaches. Since this is breaking today (November 22, 2019), I expect more updates in the future. It’s not uncommon for financial entities to have quite the lot of personally identifying information for their user base. Needless to say, if you’re one who has conducted business with Edenred, I urge you to keep up with the story and would keep an eye out of informational misuses.