The Everest ransomware group has carried out a major cyberattack on Money Mart, stealing more than 80,000 internal files containing sensitive customer and employee data from the US and Canada. The hackers have given the company until November 30 to respond or face a full leak of the stolen information.
Everest published the Money Mart entry on its dark web leak site, sharing samples of the compromised data. The stolen materials include personal identification details, partial credit card numbers (first 10 digits), transaction records, check-cashing information, and extensive employee data such as work history, IDs, and corporate email addresses.
The attackers claim to have accessed the central “National Money Mart Company Database” and warn that once the countdown ends, the entire dataset will be automatically distributed across hacker forums and leak databases. Money Mart has yet to release an official statement regarding the breach.
Money Mart is one of North America’s largest same-day financial service providers, operating around 400 locations across the United States and Canada. The company offers payday loans, money transfers, check cashing, currency exchange, and prepaid debit card services. It is a subsidiary of Momentum Financial Services Group.
Everest is among the fastest-growing ransomware groups with Russian ties. In the past 12 months alone, the group has taken responsibility for more than 100 attacks. Recent victims include Petrobras, Under Armour, Collins Aerospace, BMW, and several major organizations in the Middle East.
This large-scale data breach could lead to significant financial losses and increased fraud risks for tens of thousands of Money Mart customers. Until official confirmation is issued, cybersecurity experts urge affected users to monitor account activity and update passwords.
