A data breach at the Italian lender UniCredit has compromised the data of nearly three million customers.
The Italian bank said that a single file, which was generated in 2015, is the source of the breach.
The stolen data comprises the names, email addresses, telephone numbers, and cities of the bank’s accountholders.
Assuring its customers, the bank in a statement said: “Consequently no other personal data or any bank details permitting access to customer accounts or allowing for unauthorised transactions have been compromised.”
The bank has already started an internal probe to resolve the issue and informed relevant authorities about the breach.
Despite no threat of any kind of identity theft, the bank has started contacting all potentially affected clients through post and / or notifying them via online banking.
UniCredit stated: “Customer data safety and security is UniCredit’s top priority and since the 2016 launch of Transform 2019, the Group has invested an additional €2.4bn euro in upgrading and strengthening its IT systems and cybersecurity.
“In June 2019, the Group implemented a new strong identification process for access to its web and mobile services, as well as payment transactions.”
Earlier in July 2017, the bank faced a similar problem when a third-party service provider accessed customer data without obtaining the bank’s permission.
The bank also faced cyber breaches between September and October 2016, as well as between June and July 2017.