Italian bank giant UniCredit disclosed that 3 million Italian clients’ data was exposed in the 2015 data breach. The bank confirms the threat the actors accessed a file containing the customer records.
The bank also confirms that with the compromised details the attacker could not able to gain access to the customer accounts or perform unauthorized transactions.
“The UniCredit cybersecurity team has identified a data incident involving a file generated in 2015 containing a defined set of approximately 3 million records limited to the Italian perimeter,” the bank said in a statement.
Exposed customer details include the following details such as names, city, telephone number and email only. It doesn’t include any personal data or banking details.
After the breach, the bank launched an investigation immediately and informed all the authorities including police about the incident.
On the other hand, Italian police also carried out an investigation to see any crimes committed with the details obtained from the UniCredit file.
UniCredit spokesperson said Reuters that no details could be disclosed on how the breach happened. The bank contacting the affected persons.
This is not the first time, UniCredit victim of two cyberattacks earlier, September-October 2016 and June-July 2017, affecting 400,000 Italian customers.
The bank said that they have invested 2.4 billion euros since 2016 to boost cybersecurity.