[B]HSBC Turkey[/B] confirms that a recent cyber-attack exposed payment card information for 2.7 million customers.
The bank is a subsidiary of London-based HSBC Group, which has operations worldwide in 74 countries and territories.
Information compromised in the breach includes debit and credit cardholder names, account numbers and expiration dates. The bank says that, so far, it has not seen any evidence of fraud or other suspicious activity arising from the incident.
HSBC Turkey detected the attack in the past week through its internal security controls, according to an [B]FAQ[/B]. The attack was limited to Turkey, and all card operations have been restored to normal functioning, the bank says. No other details about the nature of the incident were revealed.
An investigation is under way in collaboration with the Banking Regulation and Supervision Agency of Turkey and other relevant authorities, HSBC Turkey says. Turkey’s Public Prosecutor’s Office has also been notified about the incident.
“The HSBC Group takes the security of its customers’ information extremely seriously and constantly reviews systems and security,” the institution says. “We are leveraging the strength of HSBC’s global network and security expertise to take swift and decisive action.”
As a result of the breach, the bank says it has implemented enhanced security measures to improve the security of its information systems and card transactions.
The HSBC Turkey breach comes just a few weeks after JPMorgan Chase confirmed that personal information about 76 million households and 7 million small businesses had been breached in a sophisticated cyber-attack (see: [B][I]Chase Breach Offers Detection Lessons[/I][/B]). Information compromised in that attack included customers’ contact information, including names, addresses, phone numbers and e-mail addresses.
[ http://www.bankinfosecurity.com/hsbc-turkey-confirms-card-breach-a-7558]