Feeds

Insider data theft costs Bank of America $10m

Bank details for 300 purloined

Choosing a cloud hosting partner with confidence

A Bank of America insider who stole customers' personally identifiable information and gave it to identity thieves has cost the bank $10 million in losses, according to media reports.

The unnamed employee and some 95 others involved in the scam were arrested in February, IDG News reported, citing a special agent with the US Secret Service. The court cases have been sealed as the investigation continues.

The agent said the bank lost at least $10 million to the criminals.

Details of the case became public on Tuesday, when a The Los Angeles Times columnist relayed the story of one Bank of America customer who had about $20,000 siphoned out of various accounts by the scammers. The perpetrators contacted the man's phone company and had calls to his home forwarded to a mobile phone under their control. That prevented the customer from receiving calls from bank employees asking about suspicious transactions.

The scammers also ordered new checks for some of his accounts and arranged to have them delivered to a United Parcels Service outlet to prevent the man from learning of the unfolding fraud.

The scammers obtained names, addresses, Social Security numbers, phone numbers, bank account numbers, driver license numbers, birth dates, email addresses, mother's maiden names, PINs and account balances, the LA Times reported. It said about 300 customers were defrauded, although a bank spokeswoman refused to confirm that number to IDG News. ®

Beginner's guide to SSL certificates

More from The Register

next story
Russian hackers exploit 'Sandworm' bug 'to spy on NATO, EU PCs'
Fix imminent from Microsoft for Vista, Server 2008, other stuff
FYI: OS X Yosemite's Spotlight tells Apple EVERYTHING you're looking for
It's on by default – didn't you read the small print?
Microsoft pulls another dodgy patch
Redmond makes a hash of hashing add-on
'LulzSec leader Aush0k' found to be naughty boy not worthy of jail
15 months home detention leaves egg on feds' faces as they grab for more power
Kill off SSL 3.0 NOW: HTTPS savaged by vicious POODLE
Pull it out ASAP, it is SWISS CHEESE
Facebook slurps 'paste sites' for STOLEN passwords, sprinkles on hash and salt
Zuck's ad empire DOESN'T see details in plain text. Phew!
Admins! Never mind POODLE, there're NEW OpenSSL bugs to splat
Four new patches for open-source crypto libraries
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Cloud and hybrid-cloud data protection for VMware
Learn how quick and easy it is to configure backups and perform restores for VMware environments.
Three 1TB solid state scorchers up for grabs
Big SSDs can be expensive but think big and think free because you could be the lucky winner of one of three 1TB Samsung SSD 840 EVO drives that we’re giving away worth over £300 apiece.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.