Absa accuses employee of leaking customer data
Big four bank Absa has suffered a data leak, which has exposed customer data to external parties.
In a statement to ITWeb, the bank says: “Absa advises that an employee has unlawfully made selected customer data available to a small number of external parties. The leaked data relates to a small portion of Absa South Africa’s customer base, although investigations continue.”
It notes that upon discovering the contravention, Absa secured High Court orders that enabled search and seizure operations at various premises and secured all devices containing the data.
According to Absa, the data on these devices was subsequently destroyed.
“Absa has enhanced the monitoring of customer accounts that have been affected to date, and are contacting customers directly,” says the bank.
“Absa has brought criminal charges against the employee, and internally the requisite consequence management has been undertaken. Absa may take further action in relation to the recipients of the data once the full scope of the leak is identified and all investigations are completed.
“Absa has put in place additional control measures to minimize the risk of reoccurrence in future.”