UniCredit confirms data breach

UniCredit has announced that it has been the victim of a security breach in Italy due to unauthorised access through a third party provider to Italian customer data related to personal loans.

A first breach seems to have occurred in September and October 2016 and a second breach which has just been identified in June and July 2017. Data of approximately 400,000 customers in Italy is assumed to have been impacted during these two periods.

UniCredit has confirmed that no data, such as passwords allowing access to customer accounts or allowing for unauthorised transactions, has been affected; however some other personal data and IBAN numbers may have been accessed.

UniCredit has launched an audit and has informed all the relevant authorities. UniCredit will also file a claim with the Milan Prosecutor's office. The bank has also taken immediate remedial action to close this breach.

In a statement, the Italian financial group said: “Customer data safety and security is UniCredit's top priority and as part of Transform 2019, UniCredit is investing €2.3 billion in upgrading and strengthening its IT systems.

The news follows an announcement last year that the firm would cut a further 6,500 jobs at the same time as investing billions of euros in digitisation as part of its new three year strategic plan.

The bank said it will be updating its core systems and investing in its IT operations, while closing hundreds of branches across Europe. The measures have been introduced to generate €1.7 net annual recurring cost savings from 2019.

    Share Story:

Recent Stories


Data trust in the AI era: Building customer confidence through responsible banking
In the second episode of FStech’s three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech examines the critical relationship between data trust, transparency, and responsible AI implementation in financial services.

Banking's GenAI evolution: Beyond the hype, building the future
In the first episode of a three-part video podcast series sponsored by HCLTech, Sudip Lahiri, Executive Vice President & Head of Financial Services for Europe & UKI at HCLTech explores how financial institutions can navigate the transformative potential of Generative AI while building lasting foundations for innovation.

Beyond compliance: Transforming document management into a strategic advantage for financial institutions
In this exclusive fireside chat, John Rockliffe, Pre-Sales Manager at d.velop, discusses the findings of Adapting to a Digital-Native World: Financial Services Document Management Beyond 2025 and explores how FSIs can turn document workflows into a competitive advantage.

Sanctions evasion in an era of conflict: Optimising KYC and monitoring to tackle crime
The ongoing war in Ukraine and resulting sanctions on Russia, and the continuing geopolitical tensions have resulted in an unprecedented increase in parties added to sanctions lists.