The Mormon Church has been hit by a major cyberattack

Red padlock open on electric circuits network dark red background
(Image credit: Shutterstock/Chor muang)

The Church of Jesus Christ of Latter-day Saints, often referred to as the LDS Church or Mormon Church, has suffered a data breach that involved sensitive personal information of Church members, employees, contractors, and friends. Payment and other banking data were not affected.

In an announcement , the Church said the data breach happened in late March 2022, but as the law enforcement investigation was ongoing, it was asked to keep the incident confidential. 

The Church did not name the threat actor behind the attack, nor did it say if any malware was used, but it did say that U.S. federal law enforcement authorities suspect the intrusion was “part of a pattern of state-sponsored cyberattacks aimed at organizations and governments around the world” that is not intended to cause harm to individuals.

Banking data safe

When the hackers managed to get into the Church’s database, they stole “basic” data, including usernames, membership record numbers, full names, gender information, email addresses, birthdates, postal addresses, phone numbers, and preferred language. 

While donation history, or banking information, was not affected, this is still enough sensitive data for identity theft, phishing, and other types of fraud. 

So far, the Church has not seen evidence of the data being used in the wild, but did urge everyone to be extra vigilant when receiving any emails, SMS messages, or phone calls, and to be on the lookout for potential fraud attempts. 

It also added that whoever was affected by the incident was already contacted, and those who had additional questions could reach out via phone numbers listed here.

To keep its members, employees, contractors, and friends secure, the Church employed external forensic experts, notified U.S. federal law enforcement, and “other cybersecurity professionals” that investigated the incident and “further enchanced” the security of Church systems. It did not detail what this enhancement means, nor did it provide affected individuals with identity protection services.

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
ID theft
Over a million patients potentially hit after another US healthcare provider hit by cyberattack
healthcare
Top US health provider tells 882,000 patients they were hit in August 2023 breach
No broadband network
Massive online data breach sees 2.7 billion records leaked - here's what we know
Cartoon Phishing
One of the largest data leaks ever sees info on 1.5 billion people leaked online
An abstract image of padlocks overlaying a digital background.
US healthcare giant Ascension says ransomware attack affected nearly six million customers
ransomware avast
The biggest addiction treatment provider in the US says it was hit by data breach
Latest in Security
Data Breach
Thousands of healthcare records exposed online, including private patient information
China
Juniper patches security flaws which could have let hackers take over your router
Representational image depecting cybersecurity protection
GitLab has patched a host of worrying security issues
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
AI agents can be hijacked to write and send phishing attacks
China
Volt Typhoon threat group had access to American utility networks for the best part of a year
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
Latest in News
Google Pixel 8a in aloe green showing
Google Pixel 9a benchmark link teases the performance of the upcoming mid-ranger
Quordle on a smartphone held in a hand
Quordle hints and answers for Monday, March 17 (game #1148)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Monday, March 17 (game #379)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Monday, March 17 (game #645)
Apple iPhone 16 Pro HANDS ON
Leaked iPhone 17 dummy units may have given us our best look yet at all four models
A super close up image of the Google Gemini app in the Play Store
It's official: Google Assistant will be retired for phones this year, with Gemini taking over