This bank insider sold account details, including the account holder's address, social security number, date of birth, debit card number, and its three-digit security code to thieves who wanted to empty customers' accounts.
"The case shows the old security adage is true – watch your perimeter closely but your staff even closer."As is unfortunately the case these identity thefts were discovered by law enforcement, rather than the financial institution holding the personal identifying information (PII). Organizations seeking to proactively detect identity theft and privacy data breaches can utilize low-cost on-demand SaaS analytics services.
- The Register
Learn how to proactively detect identity theft and unauthorized breaches of data privacy, even by authorized users - with no hardware and no on-site software.Sources:
(a) JP Morgan bank bod accused of flogging customer account info - www.TheRegister.co.uk, 04/29/2015