Unicredit revealed cyber attacks impacted 400,000 clients

7 years ago - Published in Finance, Fundamental Analysis

Suspected hackers have accessed client data of Italy's biggest lender, UniCredit, in two attacks over the past 10 months which affected around 400,000 Italian customers, the most serious hack ever reported by a major Italian lender.
The Milan-based bank blamed a “third party provider” for the two data breaches it discovered, which it said happened between September and October 2016 and again between June and July of this year.

No passwords were stolen in the attacks, but personal and banking details could have been accessed, UniCredit said in a statement.

“No data, such as passwords allowing access to customer accounts or allowing for unauthorised transactions, has been affected, whilst some other personal data and IBAN numbers might have been accessed,” it said in the official statement.

The attacks were carried out through an external commercial partner, which UniCredit did not identify. It also did not describe how the intruders accessed the data or when it became aware of the first intrusion last year.

"The bank immediately adopted all necessary measures to prevent a repeat of such intrusions," the bank said.