Zions Bancorporation Data Breach Exposes PII

Zions Bancorporation, the operator of multiple banks, was the victim of a major cyberattack. On Aug. 25, 2025, a cybercriminal group known as Hider_Nex _claimed responsibility for a distributed denial-of-service (DDoS) attack targeting the website of Zions Bancorporation.

The attack was first publicized on the dark web via the Telegram network, with HiderNex providing proof of the website’s downtime through an external uptime monitoring service. DDoS attacks are typically designed to disrupt access to online services rather than steal data, however Zions has reported that a data breach also occurred. The disruption of service caused by the attack may have been used as a cover for unauthorized access or exposed system vulnerabilities that led to the breach.

The cybersecurity incident was disclosed to the Texas Attorney General's office on Sept. 9, 2025. Exposed information includes names, addresses and financial information, which may include credit or debit card numbers, CCV codes and expiration dates. The total number of individuals has not been released, but is believed to include several thousand bank customers.

Zions Bancorporation's response

In addition to required state and federal disclosures, Zions Bancorporation will notify affected customers by mail.

If you believe your personal information may have been compromised in this breach:

• Carefully review any notice or communication you receive from Zions Bancorporation or your bank.
• Monitor financial accounts and credit reports for signs of identity theft.
• Consider placing fraud alerts or credit freezes with the major credit bureaus.
• Be cautious of unsolicited emails or phone calls requesting personal information.

For more information about the corporation and the banks it operates, see the Zions Bancorporation official website.