2024-02-09 SouthState Corp Cybersecurity Incident

Page last updated on April 11, 2024

SouthState Corp initially disclosed a cybersecurity incident in an SEC 8-K filing on 2024-02-09 17:15:21 EST.

Incident Details

Material: No
Is Breach: TRUE
Records Compromised: Unknown
Data Types Impacted: No Data Types Tracked (yet)

Compromised Date:
Detected Date: 2024-02-06
Disclosure Date: 2024-02-09
Contained Date: 2024-03-29
Recovered Date:

Attack Goal: Unknown

Costs: No Costs Tracked (yet)

Filings

8-K filed on 2024-02-09

SouthState Corp filed an 8-K at 2024-02-09 17:15:21 EST
Accession Number: 0000950103-24-002017

Item 1.05 Material Cybersecurity Incidents.

SouthState Bank, N.A., (the “Company”) detected what was determined to be a cybersecurity incident on February 6, 2024. Upon detection, the Company initiated its incident response and business continuity protocols and began taking measures to disrupt the unauthorized activity. As part of its process to address the incident, the Company proactively took measures to isolate parts of its network, which resulted in some disruption to the Company’s business processes. The Company’s operations have continued throughout this process in all material respects. The Company is conducting a thorough investigation and a cybersecurity firm has been engaged. Banking regulators and law enforcement have been notified.

While the investigation is ongoing, as of the date of this filing, the incident has not had a material impact on the Company’s operations, and the Company has not determined the incident is reasonably likely to materially impact the Company’s financial conditions or results of operations.


8-K/A filed on 2024-03-29

SouthState Corp filed an 8-K/A at 2024-03-29 17:03:39 EDT
Accession Number: 0001558370-24-004390

Explanatory Note.

This Current Report on Form 8-K/A (this “Amendment”) amends the Current Report on Form 8-K previously filed by SouthState Corporation (“SouthState”) with the Securities and Exchange Commission on February 9, 2024 (the “Original Report”). SouthState is filing this Amendment to provide supplemental information regarding the cybersecurity incident disclosed by SouthState in the Original Report. Except as expressly set forth herein, this Amendment does not amend the Original Report in any way. This Amendment supplements, and should be read in conjunction with, the Original Report.

Item 1.05 Material Cybersecurity Incidents.

As disclosed in the Original Report, on February 6, 2024, SouthState Bank, N.A. detected what was determined to be a cybersecurity incident. Upon detection, SouthState initiated its incident response and business continuity protocols and began taking measures to disrupt the unauthorized activity. In addition, SouthState has been conducting an investigation. A cybersecurity firm was engaged to assist. SouthState also notified banking regulators and law enforcement. As a result of these and other measures, SouthState has contained the impact of the cybersecurity incident.

Based on the investigation and findings, SouthState will mail notification letters to individuals whose personal information may have been involved.

While the cybersecurity incident had a significant impact on certain of SouthState’s business processes, as of the date of this filing, it has not had a material impact on SouthState’s overall financial condition or results of operations, and SouthState has determined that the incident is not reasonably likely to have a material impact on its financial conditions or results of operations.


Company Information

NameSouthState Corp
CIK0000764038
SIC DescriptionState Commercial Banks
TickerSSB - Nasdaq
Website
CategoryLarge accelerated filer
Fiscal Year EndDecember 30