Malware in NH bank computers may affect hundreds of thousands

Share this article:

Malware discovered on computers used by New Hampshire-based St. Mary's Bank may have compromised more than 100,000 accounts.

How many victims? 115,775.

What type of personal information? Names, addresses, Social Security numbers, account information and transaction records.

What happened? The New Hampshire bank discovered malware on an employee computer workstation in May, and it was later discovered that 23 other workstation computers may have been affected beginning in February.

What was the response? St. Mary's alerted the 115,775 New Hampshire residents who may have been compromised. The facility is offering one year of credit monitoring and identity theft protection services through Experian to individuals who may have been affected, and is enhancing its information security measures. An official investigation is ongoing.

Details: Malware was discovered on an employee workstation on May 26. An unnamed computer security consulting firm was called in and determined the malware is designed to capture information as it appears on computer screens. The firm determined it may have been introduced to 23 more workstation computers beginning in February. The entire bank security system was analyzed and the malware was isolated and eliminated.

Quote: “We have received no reports of unusual activity in any of our member accounts related to this malware, but we recommend that you carefully review your account statements for any sign of unauthorized activity and report it to us immediately,” St. Mary's CEO Ronald Covey wrote in his letter to customers.

Source: doj.nh.gov, “St. Mary's Bank: Incident Notification,” July 12, 2013.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US

More in The Data Breach Blog

About 60K transactions possibly affected in Cape May-Lewes Ferry breach

The security of card processing systems relating to food, beverage and retail sales at the Cape May-Lewes Ferry was compromised and payment card data may be at risk.

Arkansas State University-Beebe is investigating a potential breach

Arkansas State University-Beebe is notifying students and employees of a service running on one of its servers that could pose a potential breach to the system.

Unencrypted discs missing, Arizona State Retirement System notifies 44,000

Arizona State Retirement System notifies nearly 44,000 individuals enrolled in dental plans that two unencrypted discs containing their personal information are missing.