On December 18, 2018, an unauthorized individual was able to successfully access a member?s account. The incident occurred when online banking access was granted over the phone via poor authentication practice by an agent of the Organization, contrary to posted policy. The affected individual suffered a financial loss.The incident was discovered on December 19, 2018, when the unauthorized individual contacted the Organization again and spoke to a different agent who refused access and contacted Corporate Security. The breach was discovered during a subsequent investigation.

File Type: pdf
File Size: 330 KB
Categories: 2019