Supply chain
[SC] Supply Chain
60 Credit Unions Third-Party Breach (December 2023)
Primary Source ↗Incident Details
60 credit unions facing outages due to ransomware attack on popular tech provider. The ransomware attack targeted the cloud services provider Ongoing Operations, a company owned by credit union technology firm Trellance. About 60 credit unions are dealing with outages due to a ransomware attack on a widely used technology provider. National Credit Union Administration (NCUA) spokesperson Joseph Adamoli said the ransomware attack targeted the cloud services provider Ongoing Operations, a company owned by credit union technology firm Trellance. Third-party company: Trellance.
Technical Details
- Initial Attack Vector
- Compromise of third-party service provider / vendor relationship
- Vendor / Product
- Trellance
- Supply Chain Attack
- ✅ Confirmed third-party / vendor compromise
Timeline
- 2023-12-01 Breach occurred
- 2023-12-01 Publicly disclosed