ABN AMRO customer data may have been stolen in a ransomware attack on an IT vendor. The bank advises customers to remain alert to avoid fraud.
ABN AMRO today began notifying customers whose data may have been stolen by criminal hackers. The bank says: “This concerns a limited number of customers. We will contact customers who may be affected in writing.”
According to ABN AMRO, there are no indications yet that “unauthorized persons have actually used customer data.” “We deeply regret this situation at our supplier and offer our sincere apologies.”
Attack on AddComm
The ransomware attack occurred between May 5 and 17 at vendor AddComm, which focuses on customer communications. “The cybercriminals gave themselves access to AddComm's customer data. They also encrypted the systems and the data was stolen. Unfortunately, due to the cyber attack, AddComm's systems were not available to customers in recent days,” the company said.
Currently, the bank no longer uses the services of that company. According to AddComm, it is not known exactly what customer data was stolen.
Stay alert
The company has filed a police report. ABN AMRO appointed security specialists and reported the matter to the Dutch Data Protection Authority. The bank advises customers to remain alert about phishing scams. “Especially if scammers have data such as names and addresses. Therefore, do not open emails from unknown senders. Do not click on links or attached files in emails from senders you do not know.”
The bank also never asks customers for security codes, send a card, transfer money, log in directly via a link in the ABN AMRO app or online banking, or directly via a link in an email or text message to transfer money. As a customer, you are never required to download software that the bank may use to monitor your banking environment.
More problems in banks
Banks are a prime target for cybercriminals because they contain highly sensitive data. Banks and regulators pay close attention to cybersecurity, but the banks' many suppliers represent a weak link.
Earlier this month, Banco Santander also said that customer data held by a third party was accessible to unauthorized people. ING Group, Deutsche Bank and Commerzbank, among others, also reported customer data leaks after being hacked last year. The European Central Bank is currently conducting a stress test to check how banks will respond to a cyber attack.
Follow more technology news through our app and stay updated via our WhatsApp channel.
