Possible Data Breach on Morningstar Clients
Morningstar, a leading investment research provider, said a recent hack may have compromised some clients’ personal information, including credit cards, usernames and passwords. The breach in question took place on April 3 but was just recently discovered.
Approximately 2,300 users were potentially affected by the intrusion, with the hack occurring on the Morningstar Document Research system. In addition, over 182,000 users may have been affected by the hack through leaked email addresses and user-generated passwords. Morningstar has since moved to a more secure system and shut down its old servers, but that was not in response to this incident.
At the moment, Morningstar is encouraging all users to change their passwords and watch their credit card accounts for unauthorized charges. The company is also offering 12 months of free identity theft protection for those users who had their credit card information stolen.
According to a statement from the company, “At this point, [they] don’t have any evidence to suggest that any of the information that was compromised has been misused.”