Exposure of personal data of HSBC customers

The financial institution HSBC has suffered a security incident in which unauthorized users had access to online customer accounts between October 4, 2018 and October 14, 2018, so the organization proceeded to suspend online access to prevent further unauthorized entry. In addition, the organization sent a notification to affected users (less than 1%) on November 2, 2018.

Information that could have been accessed included full name; mailing address; telephone number; e-mail; date of birth; account numbers, types, and balances; transaction history; beneficiary account information; and beneficiary account status history.

Rob Sherman, head of the bank's media relations, explained that they regret this incident, assume responsibility and will strengthen their authentication processes with additional layers of security.