P&N Bank has revealed passwords and credit card details were not exposed during its recent data breach.
The bank has revealed the hack managed to access certain information held on its customer relationship management system.
Data which may have been exposed to this attack include name, address, email, phone number, customer number, age, account number, account balance and other non-sensitive information.
P&N Bank made it clear that passwords, driver license numbers, passport numbers, social security numbers, tax file numbers, credit card numbers, birthdates and other sensitive or health related information were not shown.
It reiterated that the breach has not caused the loss of customer funds, revealed customer credit card details or compromised banking passwords.
The data breach happened around December 12 2019 during a server upgrade on a third-party company which provides P&N Bank hosting services. When the bank became aware of the situation it shut down the source of the vulnerability and has worked with the West Australian Police Force (WAPOL) and other authorities to investigate and protect customers.
Copyright © 2018 RegTech Analyst