Finastra provides services to 90 of the top 100 banks globally, has US$1.9 billion in annual revenue, and has more than 9000 customers and 10,000 employees, according to its own website.
"Upon learning of the situation, we engaged an independent, leading forensic firm to assist us in investigating the scope of the incident," the company said in a statement dated 20 March.
"Out of an abundance of caution, we immediately acted to take a number of our servers offline while we continue to investigate.
"We are working to resolve the issue as quickly and diligently as possible and to bring our systems back online, as appropriate.
"We are in touch directly with any customers who may be impacted. Safeguarding our assets and those of our customers remains paramount, and we have committed to updating our stakeholders regularly and providing more information as it becomes available."
How do you think threat actors compromised Finastra's corporate network?— Bad Packets Report (@bad_packets) March 20, 2020
The threat intelligence service Bad Packets speculated in a tweet that the attackers could have gained entry either through a flaw in Citrix Server or else through a vulnerability in Pulse Connect Secure, an application that claims to provide secure access to machines in the cloud or data centres.
Well-known British security researcher Kevin Beaumont expressed his reaction in two short words: "Dear lord."