Financial software company Intuit announced hackers targeted tax return information within TurboTax via a credential-stuffing attack, Dark Reading reports. Intuit said in its breach disclosure letter to the Office of the Vermont Attorney General that hackers took usernames and passwords “from a non-Intuit source” to conduct the attack. If hackers were able to log in to a user’s TurboTax account, they could have had access to the person’s name, Social Security number, address, birthdate, driver’s license number and financial data. After it discovered the problem, Intuit made the affected accounts unavailable. Intuit added its systems were not affected by the breach.
If you want to comment on this post, you need to login.