The MoneyGram Hack Is Real, and Your Data May Well Have Been Stolen

MoneyGram users should remain vigilant as the company has revealed that its database was breached in September 2024, resulting in the loss of sensitive information belonging to its vast customer base.

With more than 150 million users worldwide, several million of whom reside in the U.S., the number of accounts affected is significant; MoneyGram says it will notify individual accounts of the data lost.

MoneyGram hack results in loss of private data

MoneyGram’s network was breached between September 20 and 22, 2024, with hackers gaining access to the private information of millions of users. Although the exact number of users is unknown at the time of writing, as one of the world’s largest money transfer and digital payment platforms, MoneyGram has users in more than 200 countries.

The initial attack on MoneyGram caused five days of disruption in September 2024, during which MoneyGram took steps to secure its network. A confidential source told BleepingComputer that the company was breached via a social engineering attack and that no ransomware was used.

Still, MoneyGram confirmed that hackers stole a significant amount of user data, including names, email addresses, mailing addresses, social security numbers, government IDs and more.

The amount of data stolen varies by customer and MoneyGram is prepared to contact affected individuals to explain the severity of the breach on individual terms.

How to stay safe after the MoneyGram hack

MoneyGram recommends that affected users (who can be anyone until a user-specific email is sent) monitor any accounts closely. In addition, the company has \”arranged to provide identity monitoring services to affected consumers for two years\” at no charge. It\’s really the least they can do!

Affected MoneyGram customers can contact MoneyGram\’s data security officers [PDF] to find out the best course of action.