Italian global banking and financial services company UniCredit S.p.A. yesterday disclosed a data breach incident involving a file containing roughly 3 million records.
The file was generated in 2015, which suggests that customers who created accounts in 2016 and beyond are likely safe. Affected information consisted of customers’ names, cities, telephone numbers and emails.
UniCredit said that the impacted records were “limited to the Italian perimeter,” and did not include any banking details that would allow attackers to access customer accounts or perform unauthorized transactions, the company stated in an online notification.
The financial institution did not explain what caused the breach, but it said it reacted to the incident by launching an internal investigation and contacting authorities.