"Texas Bank Breach Exposed Thousands of Social Security Numbers"

HSB, a Texas-based financial institution, alerted customers about a Business Email Compromise (BEC) attack that compromised the personal data of thousands of customers. The company notified the Maine Attorney General's Office that threat actors may have gained access to customer names or other personal identifiers with Social Security numbers (SSNs), potentially exposing more than 17,000 customers. Malicious actors can use stolen SSNs in conjunction with names and driver's license numbers to commit fraud. The bank claims to have observed "unusual activity" on a former company employee's email account. The investigation revealed that the former employee was the victim of a phishing attack. Between July 28 to July 29, 2022, the threat actors had unauthorized access to the individual's HSB email account. The unauthorized activity only involved this email account. The letter of notice attached to the HSB breach notification states that all essential banking systems were unaffected and remain secure. The sensitive customer data was contained by attachments in the former employee's emails. This article continues to discuss the exposure of over 17,000 HSB customers' SSNs due to a suspected cyberattack. 

Cybernews reports "Texas Bank Breach Exposed Thousands of Social Security Numbers"