Skip to main content

Citigroup says more than 360,000 accounts compromised

Citibank
Image used with permission by copyright holder

Citigroup has released updated figured for the data breach last week in which the company claimed that about one percent of the company’s customers’ account information had been accessed by hackers. Citigroup’s latest update says that information for more than 360,000 U.S. credit card accounts was compromised in the breach, but the total number of impacted customers remains relatively steady at just under 218,000.

Citigroup discovered the breach on May 10, and began sending notification letters to customers on June 3.

Citigroup says attackers were able to obtain account holders’ names, account numbers, and contact information, including their email addresses. However, the company claims that other information that would be particularly useful to identity thieves—social security numbers, expiration dates, dates of birth, and card security codes—were never compromised.

The company says many of the additional accounts accessed by hackers were either duplicates or closed accounts, and don’t represent a significant additional threat to consumers. Citigroup has heightened monitoring on all the accounts, but will not be issuing new card for closed accounts or accounts that recently received new cards through other card-replacement operations. The company says it placed Internet fraud alerts and enhanced monitoring on all accounts deemed at risk once the breach was uncovered.

Citigroup emphasizes that customers are not liable for unauthorized use of their accounts, and that the company has implemented enhanced security procedures and is working with law enforcement. However, they do not intend to go into any more detail on the incident. “For the security of our customers, and because of the ongoing law enforcement investigation, we cannot disclose further details regarding how the data breach occurred,” the company said in a statement.

The states with the greatest number of compromised accounts are California (with more than 80,000), Texas, Illinois, New York, and Florida.

Editors' Recommendations

Geoff Duncan
Former Digital Trends Contributor
Geoff Duncan writes, programs, edits, plays music, and delights in making software misbehave. He's probably the only member…
More than 750,000 U.S. birth certificate applications exposed online
A person using a laptop at a desk.

Here’s another story of apparently sloppy practices by a company charged with looking after our personal data online.

According to TechCrunch, more than 750,000 U.S. birth certificate applications have been found exposed online in an Amazon Web Services (AWS) storage bucket, which is essentially a cloud-based storage solution.

Read more
Hackers collect payment and password info from more than 4,600 sites
Stock photo of laptop with code on its screen

Two recent supply-chain attacks have allowed hackers to collect the payment info and user passwords of more than 4,600 websites.

According to ZDNet, the supply-chain attacks were spotted by Twitter user and Sanguine Security forensic analyst Willem de Groot and were still considered ongoing as of Sunday, May 12.

Read more
What to do if your Intel CPU keeps crashing
Pins on Core i9-12900K.

Despite being among the best processors you can buy, some high-end Intel CPUs have faced a wave of instability over the past few months. Intel is investigating the problem, but the company and its motherboard partners have already worked toward some temporary fixes to improve stability on high-end Intel CPUs -- even if it comes at a performance cost.

Before getting into the fixes, keep in mind that they are temporary. Intel will release a statement on the instability soon, likely with more direct guidance on what affected users should do. In addition, the scope of the problem isn't clear -- if you're not experiencing issues, you shouldn't have anything to worry about.
Who's affected

Read more