23 July 2016
Find out more

Financial services firms caught up in massive Epsilon breach

04 April 2011  |  12546 views  |  2 anonymous figure in front of stock exchange

A massive data breach at US cloud marketing and communications outfit Epsilon may have exposed the customer e-mail addresses of some of the country's largest banks.

Epsilon, which sends 40 billion marketing e-mails annually, released a statement on Friday saying that on 30 March it detected an "unauthorised entry" into its system that exposed customer names and email addresses.

TD Ameritrade, US Bank, Citibank, JPMorgan Chase and Capital One are among a host of companies to have come forward over the weekend and admitted that customer names and e-mail contacts may have been leaked during the Epsilon attack. Financial utility groups MoneyGram and Visa were also on the receiving end of the raid.

The hacked data appears to be limited to customer names and electronic contact addresses. No personal information such as credit cards or social security numbers were accessed.

In a statement, JPMorgan says: "We are advised by Epsilon that the files that were accessed did not include any customer financial information, but are actively investigating to confirm this."

Either way, the incident is major embarrassment for Epsilon's banking clients who must contact customers and warn them to be wary of future marketing communications and potential phishing threats.

Barclays Bank of Delaware, which was also caught up in the incident, posted this message to customers: "It is possible you may receive spam email messages as a result which could potentially ask you for additional information about your account. Please note, Barclays will never ask you in an email to verify sensitive information such as your full account number, Username, Password or Social Security Number. Therefore, any email which does so should be treated suspiciously, even if it looks like it comes from Barclays. As a reminder, we urge you to be cautious when opening links or attachments from unknown third parties."

Comments: (2)

Martin Davies
Martin Davies - Causal Capital Pte Ltd - Singapore | 04 April, 2011, 13:49

This is appaling and Epsilon should pay damages for this breach of trust and security. The banking system is fragile enough without clowns like this managing information on behalf of customers.

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
A Finextra member
A Finextra member | 05 April, 2011, 13:51

Is this not a problem that is germane to 'cloud' - an archipelago of shared services facilities?

Be the first to give this comment the thumbs up 0 thumb ups! (Log in to thumb up)
Comment on this story (membership required)

Finextra news in your inbox

For Finextra's free daily newsletter, breaking news flashes and weekly jobs board: sign up now

Related stories

RSA hack explained: phishing and Flash flaw

RSA hack explained: phishing and Flash flaw

04 April 2011  |  12009 views  |  1 comments
Government spooks called in to investigate Nasdaq OMX hack

Government spooks called in to investigate Nasdaq OMX hack

31 March 2011  |  7705 views  |  0 comments
Morgan Stanley hit hard by China-based hackers - Bloomberg

Morgan Stanley hit hard by China-based hackers - Bloomberg

01 March 2011  |  8925 views  |  0 comments
Hackers hit eFinancialCareers database

Hackers hit eFinancialCareers database

21 February 2011  |  10192 views  |  2 comments
Cosmetics firm Lush forced to shut more hacked Web sites

Cosmetics firm Lush forced to shut more hacked Web sites

15 February 2011  |  8195 views  |  0 comments
Malaysian hacker breached Fed network

Malaysian hacker breached Fed network

19 November 2010  |  10531 views  |  0 comments
Heartland pays $5 million settlement to Discover over data breach

Heartland pays $5 million settlement to Discover over data breach

02 September 2010  |  8807 views  |  0 comments
Hackers steal card details from US hotel chain

Hackers steal card details from US hotel chain

01 July 2010  |  12560 views  |  0 comments
US Treasury site hit by attack on cloud host

US Treasury site hit by attack on cloud host

06 May 2010  |  7695 views  |  0 comments
'Hackers' take over bank's IT network with info found online

'Hackers' take over bank's IT network with info found online

29 April 2010  |  17257 views  |  1 comments
US finance firm DA Davidson fined over data breach

US finance firm DA Davidson fined over data breach

13 April 2010  |  5879 views  |  0 comments
Barclays programmer jailed over TJX hack

Barclays programmer jailed over TJX hack

15 March 2010  |  10262 views  |  0 comments
Financial firms risking breaches by outsourcing data - research

Financial firms risking breaches by outsourcing data - research

02 March 2010  |  7040 views  |  0 comments
Hacker cracks bank server and steals customer logins

Hacker cracks bank server and steals customer logins

13 January 2010  |  13120 views  |  0 comments

Related company news

 

Related company information

JPMorgan Chase
Visit www.abe-eba.euVisit VocaLink.comVisit capgemini.com

Top topics

Most viewed Most shared
MasterCard agrees £700m VocaLink acquisitionMasterCard agrees £700m VocaLink acqu...
7966 views 14 comments | 32 tweets | 36 linkedin
hands typing furiouslyWhat Every FinTech CEO Should Know About R...
7808 views 0 | 14 tweets | 8 linkedin
hands typing furiouslyBanking on IoT: Security in the Internet o...
7662 views 3 | 19 tweets | 6 linkedin
Santander doubles down on fintech fundSantander doubles down on fintech fund
7555 views comments | 22 tweets | 28 linkedin
Brexit-scarred London fintech startups enquire about moving to BerlinBrexit-scarred London fintech startups enq...
7457 views comments | 16 tweets | 16 linkedin

Featured job


Brussels (Belgium) or Paris (France)

Find your next job