Marketing firm Epsilon, a third-party vendor that manages customer e-mail databases for more than 2,500 clients, said an unauthorized entry into its email system took place last week, reportedly compromising millions of clients' customer names and e-mail addresses.

“On March 30, an incident was detected where a subset of Epsilon clients' customer data were exposed by an unauthorized entry into Epsilon's e-mail system,” the company, a subsidiary of Dallas-based Alliance Data Systems Corp., said in an April 1 press release.

According to several sources including www.krebsonsecurity.com and a press release issued by consumer identity theft security and restoration firm iSekurity, the affected Epsilon clients include American Express, Ameriprise Financial, Barclays Bank of Delaware, Capital One, Citibank, JP Morgan Chase and U.S. Bank.

Epsilon said the stolen data is limited to customer names and e-mail addresses only. “A rigorous assessment determined that no other personal identifiable information associated with those names was at risk,” Epsilon said. “A full investigation is currently under way.”

The Pennsylvania Department of Banking this week warned consumers to look out for e-mail phishing scams following the Epsilon incident and a recent attack against security giant RSA.

“Scammers could use e-mail addresses and other information recently stolen from Epsilon and RSA Security to try to trick consumers into providing personal information, including bank account or credit card information,” a Pennsylvania Department of Banking press release said. “Perpetrators of phishing scams can max-out a victim's credit cards, empty their bank accounts or take out loans in their name. An identity thief can also establish new accounts with banks, credit card companies, utilities and other businesses.”

Complete your profile to continue reading and get FREE access to CUTimes.com, part of your ALM digital membership.

Your access to unlimited CUTimes.com content isn’t changing.
Once you are an ALM digital member, you’ll receive:

  • Breaking credit union news and analysis, on-site and via our newsletters and custom alerts
  • Weekly Shared Accounts podcast featuring exclusive interviews with industry leaders
  • Educational webcasts, white papers, and ebooks from industry thought leaders
  • Critical coverage of the commercial real estate and financial advisory markets on our other ALM sites, GlobeSt.com and ThinkAdvisor.com
NOT FOR REPRINT

© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.

Natasha Chilingerian

Natasha Chilingerian has been immersed in the credit union industry for over a decade. She first joined CU Times in 2011 as a freelance writer, and following a two-year hiatus from 2013-2015, during which time she served as a communications specialist for Xceed Financial Credit Union (now Kinecta Federal Credit Union), she re-joined the CU Times team full-time as managing editor. She was promoted to executive editor in 2019. In the earlier days of her career, Chilingerian focused on news and lifestyle journalism, serving as a writer and editor for numerous regional publications in Oregon, Louisiana, South Carolina and the San Francisco Bay Area. In addition, she holds experience in marketing copywriting for companies in the finance and technology space. At CU Times, she covers People and Community news, cybersecurity, fintech partnerships, marketing, workplace culture, leadership, DEI, branch strategies, digital banking and more. She currently works remotely and splits her time between Southern California and Portland, Ore.