The information provided on this website does not, and is not intended to, act as legal, financial or credit advice; instead, it is for general informational purposes only. Information on this website may not be current. This website may contain links to other third-party websites. Such links are only for the convenience of the reader, user or browser; we do not recommend or endorse the contents of any third-party sites. Readers of this website should contact their attorney, accountant or credit counselor to obtain advice with respect to their particular situation. No reader, user, or browser of this site should act or not act on the basis of information on this site. Always seek personal legal, financial or credit advice for your relevant jurisdiction. Only your individual attorney or advisor can provide assurances that the information contained herein – and your interpretation of it – is applicable or appropriate to your particular situation. Use of, and access to, this website or any of the links or resources contained within the site do not create an attorney-client or fiduciary relationship between the reader, user, or browser and website owner, authors, contributors, contributing firms, or their respective employers.
Credit.com receives compensation for the financial products and services advertised on this site if our users apply for and sign up for any of them. Compensation is not a factor in the substantive evaluation of any product.
The hackers accessed customers’ names, account numbers and email addresses. They did not get to see other information especially useful for committing fraud, including Social Security numbers, dates of birth, card security codes and expiration dates, according to the bank.
The attack affected Citi’s Account Online system, but not the company’s main transaction processing network. The company assured consumers that they won’t have to pay for any fraudulent purchases resulting from the data breach.
“Our customers are not liable for any unauthorized use of their accounts,” Citi said in a press release.
The bank has been criticized by some, including Sen. Robert Menendez (D-N.J.), for taking three weeks to notify customers about the breach. In its statement, Citi said it responded as soon as the breach was detected, but that it required the analysis of “millions of pieces of data” before company researchers could figure out how much information the hackers accessed.
The attack was discovered on May 10. Citi told reporters about it on June 8, and the first notification letters were mailed to consumers on June 3. Most customers whose information was compromised received replacement credit cards.
[Tool: Quickly assess your risk of identity theft for free]
Image: Liam Dunn, via Flickr
October 19, 2023
Identity Theft and Scams
May 17, 2022
Identity Theft and Scams
May 20, 2021
Identity Theft and Scams