tl;dr
Rogue employees at JPMorgan Chase and TD Bank accessed and shared customer information without authorization, leading to fraudulent transactions. Chase reported an incident on November 5, 2024, involving credit card data of a Massachusetts customer; the employee responsible was fired and affected tr...
Rogue employees at JPMorgan Chase and TD Bank have accessed and shared customer information without authorization, leading to fraudulent transactions that have since been reimbursed.
On November 5, 2024, JPMorgan Chase reported that an employee improperly accessed credit card data of a Massachusetts customer. This unauthorized access enabled fraudulent transactions. The employee responsible was terminated, and all affected transactions have been reimbursed.
In a separate incident, TD Bank disclosed a November 2024 breach involving multiple customers in Massachusetts. An employee accessed sensitive personal information, including names, birth dates, phone numbers, addresses, account numbers, social security numbers, and transactional data. TD Bank has reimbursed those impacted and has reported the breach to law enforcement authorities.
Both incidents highlight the risks associated with insider threats within financial institutions. Vigilance and robust security measures remain crucial to protecting customer data. While JPMorgan Chase’s breach appeared limited to one customer in Massachusetts, it remains unclear whether other states were affected.
The commitment from both banks to reimburse customers and cooperate with authorities demonstrates a responsible approach to managing internal fraud. Customers affected by such incidents are encouraged to monitor their accounts closely and report any suspicious activity promptly.