Angel One, a leading financial services platform, disclosed a breach involving unauthorized access to specific client data after some of its Amazon Web Services (AWS) resources were compromised.
The incident was discovered on February 27, 2025, when the company received alerts from its dark-web monitoring partner about a potential data leakage.
Threat actors claimed the leak on multiple hacker forums.
.png
)
In an official statement, Angel One revealed that after analyzing the alerts, it was confirmed that some of its AWS resources had been breached. To mitigate the impact, the company acted swiftly by changing all related credentials for its AWS cloud infrastructure and associated applications.
The company emphasized its commitment to client data privacy and announced that an external forensic partner had been engaged to investigate the breach comprehensively. This includes validating the scope of the incident and performing a root cause analysis to prevent future occurrences.
Angel One reassured its clients that the breach had not impacted their securities, funds, or credentials. “All client accounts remain secure,” the company stated. While investigations are ongoing, Angel One has made this disclosure as part of its commitment to good governance and transparency.
The financial services provider also pledged to take every possible measure to address client concerns and safeguard their interests. “We value the trust our clients place in us and are taking all necessary steps to ensure their data remains protected,” said a spokesperson for Angel One.
Cybersecurity experts have noted that cloud-based breaches like this highlight the growing need for robust security measures in handling sensitive financial data. Unauthorized access to cloud resources can result in significant reputational and operational risks for companies, particularly in industries like financial services where trust is paramount.
Angel One’s swift response in changing credentials and engaging forensic experts reflects an industry-standard approach to managing such incidents. However, questions remain about how the breach occurred and whether additional safeguards could have prevented it. The ongoing investigation is expected to shed light on these aspects.
This incident underscores the importance of proactive monitoring and timely disclosures in maintaining client confidence. As cyber threats continue to evolve, companies are increasingly being held accountable for their cybersecurity practices and responses.
Angel One has assured stakeholders that it will provide updates as more information becomes available from its investigation. Meanwhile, clients are encouraged to stay vigilant and report any suspicious activity related to their accounts.
Collect Threat Intelligence on the Latest Malware and Phishing Attacks with ANY.RUN TI Lookup -> Try for free
