Robinhood, a USA-based stock trading and investing app, recently announced that it was a victim of a cyber attack, wherein the attacker obtained access "to limited amount of personal information" of over 7 million customers. Of the 7 million customers, Robinhood said, — Email addresses of approximately 5 million people were breached in the incident Full names of 2 million were also exposed. Information of 310 people such as names, date of birth and zip code was breached. "More extensive account details" was breached of 10 customers Robinhood did not provide any insight into what these account details are. However, they clarified — Based on our investigation, the attack has been contained and we believe that no Social Security numbers, bank account numbers, or debit card numbers were exposed and that there has been no financial loss to any customers as a result of the incident This is the second instance of a cyber attack on a financial entity in a week. Recently, India's largest securities depository Central Depository Services Limited (CDSL) exposed sensitive data of around 4.39 crore investors, cybersecurity firm CyberX9 reported. Data on trading platforms include personal and financial documents which if it falls in the hands of malicious actors, can be a major cause for concern. How did the hack happen? Robinhood said that the malicious actor — Socially engineered a customer support employee by phone and obtained access to certain customer support systems After containing the intrusion, the malicious actor demanded a ransom The platform…
