Bank of America Vendor Compromise Leads to Customer Data Exposure
MB
Last updated 04/30/2024 by
Miriam Belen-RodriguezEdited by
Summary:
Bank of America has announced a significant data breach at Infosys McCamish Systems, putting customer data at risk. The incident, which occurred last year, involved the exposure of personal and financial information. In response, Bank of America is offering affected customers a complimentary identity theft protection service, amidst growing concerns over cybersecurity in the banking sector.
Bank of America has alerted its customers and relevant authorities about a significant data breach at one of its vendors, Infosys McCamish Systems (IMS), which occurred last year. This incident has put sensitive customer information at risk, raising concerns over potential identity theft or fraud.
Get Competing Personal Loan Offers In Minutes
Compare rates from multiple vetted lenders. Discover your lowest eligible rate.
It's quick, free and won’t hurt your credit score
The data breach details
Incident overview
The breach was first disclosed by Bleeping Computer, with reports sent to the Attorney General of Texas detailing the extent of the exposure. Personal Identifiable Information (PII) of numerous customers, including names, addresses, social security numbers, dates of birth, and financial details such as account and credit card numbers, were compromised.
Timeline and response
The breach took place on November 3, 2023, but Bank of America only sent out official notifications to affected customers on February 1, 2024. IMS discovered the breach when an unauthorized party accessed their systems, leading to several applications being made unavailable. Despite the breach, Bank of America assures that its own systems remained secure.
Bank of America’s proactive measures
In an effort to mitigate the impact on its customers, Bank of America has offered a complimentary two-year subscription to an identity theft protection program provided by Experian Identity Works. This service includes daily credit report access, online tracking, and identity theft recovery, at no charge to the customers.
Share this post: