US Bank Slammed for "Vague and Deceptive" Breach Disclosure

Feb 12, 2020 06:00 pm Cyber Security 252

US Bank Slammed for "Vague and Deceptive" Breach Disclosure

American bank Fifth Third has come under fire for sending customers a cryptic breach disclosure letter judged to be "vague and deceptive" by a consumer group.  





Fifth Third wrote to customers after discovering that at least two of its employees had stolen customer information and provided it to a third party. Data exposed included names, Social Security numbers, addresses, phone numbers, dates of birth, mothers' maiden names, driver's license information, and account numbers.





The thefts began in the summer of 2018, and those responsible have since been terminated by the company. Although it hasn't been confirmed that the employees who pulled this inside job later sold the stolen data on the dark web, it's only logical to conclude that they stood to profit in some way from their high-risk actions. 





The bank, which is headquartered in Cincinnati, Ohio, at Fifth Third Center, has not specified how many customers were impacted by the incident or how many former employees were fired for passing out customers' personal data.  





In a written statement, Fifth Third said: "We have notified the limited number of customers who may be impacted. We will provide identity theft monitoring to them at no cost."





The head of the Consumer Federation of America slammed Fifth Third's enigmatic letter to customers disclosing the data breach.





Jack Gillis, executive director of the Washington, DC–based non-profit consumer advocate, said: "Fifth Third is only ..

Support the originator by clicking the read the rest link below.

slammed vague deceptive breach disclosure
Read The Rest from the original source
infosecurity-magazine.com

Related News

Be in Touch

All Rights Reserved #1 Source for Cyber Security News, Reports and Threat Intelligence
Powered By The Internet!!!!