Citigroup Confirms 360,000 Customers Affected by Hackers
Thursday, June 16, 2021 3:50 AM

Citigroup Inc. (NYSE: C) on late Wednesday said that hackers stole account information of more than 360,000 Citigroup’s US credit card customers in the cyber attacks in May, almost twice as many people as the bank figure’s had initially suggested. 

The bank said, while Citi Cards’ Account Online system was compromised, the main cards processing system was not. Other Citi consumer banking online systems were not accessed or compromised.

The bank also said, “The customers' account information (such as name, account number and contact information, including email address) was viewed. However, data that is critical to commit fraud was not compromised: the customers' social security number, date of birth, card expiration date and card security code (CVV).”

Citigroup had earlier said that about 1 percent customers in North America were affected due to the security breach. According to the bank’s annual report, it has 21 million customers in North America.

The bank said, upon discovery, internal fraud alerts and enhanced monitoring were placed on all accounts deemed at risk. Simultaneously, rigorous analysis began to determine the precise accounts and type of information accessed. The majority of accounts impacted were identified within seven days of discovery.

Citi has implemented enhanced procedures to prevent a recurrence of this type of event. Citi have also notified law enforcement and government officials. 

For the security of its customers, and because of the ongoing law enforcement investigation, the bank cannot disclose further details regarding how the data breach occurred.

Shares of Citi last traded at $38, down 2.01 percent on Wednesday.