- Joined
- Mar 3, 2018
- Messages
- 1,713
HSBC bank was reportedly hit by a credential stuffing attack, which allowed attackers to gain access to "full name, mailing address, phone number, email address, date of birth, account numbers, account types, account balances, transaction history, payee account information, and statement history." The attack took place between October 4 and October 14, but letters were sent to customers on November 2. The company told The Telegraph that less than 1% of their customers were affected, but notes that the banks has around 1.4 million US accounts.
"We responded to this incident by fortifying our log-on and authentication processes, and implemented additional layers of security for digital and mobile access to all personal and business banking accounts. We have notified those customers whose accounts may have experienced unauthorized access, and are offering them one year of credit monitoring and identify theft protection service."
"We responded to this incident by fortifying our log-on and authentication processes, and implemented additional layers of security for digital and mobile access to all personal and business banking accounts. We have notified those customers whose accounts may have experienced unauthorized access, and are offering them one year of credit monitoring and identify theft protection service."