Massive Ransomware Attack Hits Global Financial Institutions

Severity: High (Score: 76.0)

Sources: Bssnews

Summary

On March 10, 2026, a coordinated ransomware attack targeted multiple financial institutions worldwide, affecting over 200 banks and credit unions. The attackers exploited a vulnerability in the widely used banking software, identified as CVE-2025-6789, which allowed them to encrypt critical data and demand ransoms averaging $1 million per institution. Initial reports indicate that the attack may have originated from a state-sponsored group, with evidence linking it to a known hacking collective. As of now, many institutions are still offline, and recovery efforts are ongoing. The attack has disrupted services for millions of customers, leading to significant financial losses. Security teams are advising immediate patching of the affected software to mitigate further risks. The FBI has issued a warning about the ongoing threat and is investigating the incident. Affected systems include core banking platforms and customer service applications. Key Points: • Over 200 financial institutions impacted by ransomware attack. • Attackers exploited CVE-2025-6789 to encrypt critical data. • FBI investigating potential state-sponsored origins of the attack.

Key Entities

• Iran (country)