US Bank Reports Global Cybersecurity Breach Compromising Sensitive Customer Data
A Bank in New York Reveals Global Cybersecurity Incident Resulting in Sensitive Customer Data Exposure
In a recent communication to its customers, M&T Bank disclosed a global cybersecurity incident related to the file transfer tool MOVEit, utilized for secure transmission of sensitive information. The bank reported that an attacker gained access to customer data by targeting one of its third-party vendors.
The compromised data included customer names, addresses, and M&T checking, savings, and/or money market account numbers. However, it's important to note that no sensitive data such as PINs, passwords, social security numbers, date of birth, or debit/credit card numbers were accessed during the breach.
M&T Bank emphasized that its internal systems remained uncompromised and secure throughout the incident.
In response to the breach, a customer affected by the data exposure has initiated a class action lawsuit against M&T Bank, alleging negligence in securing and safeguarding the data stored within the bank's network. The lawsuit suggests that at least 95,000 customers' data may have been exposed, with potentially hundreds of thousands more affected based on the bank's extensive clientele.
M&T Bank, with assets exceeding $207 billion, operates in 12 states across the Eastern United States.
Sep 02, 2023
