JPMorgan Chase & Co has admitted that it has suffered one of the world’s largest ever data breaches.
It comes after the FBI and Secret Service announced in late August that they were investigating “co-ordinated” cyber attacks on a number of US banks, some of which were reportedly carried out by Russian hackers. JPMorgan was one of the American banks targeted.
The bank admitted on Thursday that the hackers had exposed the names, addresses, phone numbers and email addresses of the holders of some 83 million households and small business accounts. That makes it one of the biggest data breaches in history.
Despite the large numbers concerned, with the details of 76 million households and 7 million small businesses exposed, Reuters quoted the bank as saying that there was no evidence that account numbers, passwords, user IDs, birth dates or social security numbers had been stolen. The bank also apparently said it has not witnessed any “unusual customer fraud” related to the attack.
Reuters meanwhile quoted a bank spokeswoman, Patricia Wexler, as saying that the bank is not offering credit monitoring to its customers because no financial information, account data or personally identifiable information had been compromised.
But the fact that the names, address, telephone numbers and email addresses of account holders have been compromised will worry security experts, as this type of stolen information can often be used in other forms of online fraud and identity theft. For example, hackers can use the stolen email addresses to send out fake emails, directing customers to impostor websites.
The bank’s customers should be on heightened alert for fraud, Mark Rasch, a former federal cyber crimes prosecutor, was quoted by Reuters as saying. “All of this data is useful to hackers and identity thieves,” he reportedly said. “The kind of information that was stolen is not sensitive itself, but is frequently used to validate people’s identities.”
The exposure of the personal details of 83 million account holders, makes the JPMorgan breach one of the largest in recent times.
In September, Home Depot confirmed its payment systems were breached in a cyberattack that resulted in the theft of credit and debit card for 56 million account holders.
Giant US retailer Target reported lasted December that about 40 million payment card accounts had been hacked during the pre-Christmas shopping season. Later, in an update, it said that about 70 million customers had their addresses, phone numbers and other information compromised.
A few months later, the company’s CIO resigned.
Last October, Adobe Systems admitted that a security breach had a significantly wider impact that had initially been feared, with 38 million encrypted passwords stolen.
Are you a security pro? Try our quiz!
US widening lead over China on AI development, as UK places third in Stanford index…
Amazon to invest a further $4bn into AI start-up Anthropic, doubling its investment as it…
The demand for tech skills is surging, driving economic growth but revealing challenges. Financial costs,…
US Supreme Court tosses Meta's appeal over Cambridge Analytica-linked investor lawsuit, meaning case must proceed
Uber reportedly seeks $10m stake in Chinese autonomous driving firm Pony AI via US IPO,…
iPhone maker reportedly developing next-generation AI large language model for Siri for spring 2026 as…