< Back to news headlines

26 July 2017 - 400,000 customers affected by UniCredit hack
Source -
Where - Italy
Business line - Corporate Services

UniCredit has announced it was the victim of two security breaches which saw 400,000 customers’ personal details compromised.

The bank says the breaches occurred in Italy due to unauthorised access through an Italian third-party provider. The leaked data related to personal loans taken out by individuals with the bank.

“A first breach seems to have occurred in September and October 2016 and a second breach which has just been identified in June and July 2017,” the bank said in a statement.

Data relating to approximately 400,000 Italian-based customers is likely to have been impacted by the two events, the bank confirmed. “No data, such as passwords allowing access to customer accounts or allowing for unauthorised transactions, has been affected, whilst some other personal data and IBAN numbers might have been accessed,” it added.

UniCredit says it has launched an internal investigation and has informed all relevant authorities about the breach.
Customers who believe they may have been affected should contact UniCredit's dedicated toll-free number 800 323285 or their customer services team. In addition, UniCredit will be contacting affected customers.

“Customer data safety and security is UniCredit's top priority and as part of Transform 2019, UniCredit is investing €2.3bn in upgrading and strengthening its IT systems,” it said.