A breach dating back to 2015 involving around 3 million customers. This was communicated this morning by the bank in Piazza Gae Aulenti, specifying that "the Unicredit IT security team has identified a case of unauthorized access to data relating to a file generated in 2015”. This file contained the names, telephone numbers and e-mail addresses of three million Italian customers. No risk for checking accounts however: "No other personal data has been compromised, nor bank details capable of allowing access to customer accounts or the carrying out of unauthorized transactions", specifies Unicredit
Once the violation was discovered, the bank immediately launched an internal investigation, contacting the police and informing all the competent authorities. Affected customers will also be notified: “The bank is contacting all potentially interested persons exclusively via traditional mail and/or notifications via online banking. For any doubts, customers can contact UniCredit's customer service or call the toll-free number 800 323285”, writes Unicredit.
We recall that since 2016, the bank has invested 2,4 billion euros in IT security and updating IT systems as part of the "Transform 2019" plan.
In June 2019, the institute led by Jean Pierre Mustier implemented a new strong customer authentication process that affects both payments and access to accounts via the web. This new process requires a unique password or biometric identification, further strengthening customer safety and security.
