Capital One has announced that it was the victim of a cyber attack, and leaked information about approximately 6 million Canadians and 100 million people in the United States.
"There was unauthorized access by an outside person who obtained certain types of personal information about people who had applied for their credit card products and to Capital One's credit card customers," Capital One explains in its FAQ (frequently asked questions) about the incident.
Banks says it "immediately fixed the configuration vulnerability that this person exploited and immediately began working with federal law enforcement," with the FBI arresting a person responsible for the data breach.
Capital One states "no credit card account numbers or login information was compromised and over 99 percent of the social security number was not compromised. "
However, the information leaked mainly affected consumers and small businesses, especially those who applied for credit cards from 2005 to 201
- zip code / postal code
- telephone numbers
- email addresses
- dates of birth
- self-reported income
Other information leaked includes "portions of credit card customer data, including:"
- Customer status data such as: credit score, credit limits, balance9, payment history01, contact information6 ] Fragments of transaction data from a total of 23 days during 2016, 2017 and 2018
Capital One states "For our Canadian credit card customers, approximately 1 million social security numbers were compromised in this event."
Ouch. Capital One offers a Mastercard with Costco in Canada, so if you have one of their cards, you're likely to be affected by this breach.