Security News > 2024 > February > Infosys subsidiary named as source of Bank of America data leak
Indian tech services giant Infosys has been named as the source of a data leak suffered by the Bank of America.
Infosys disclosed the breach in a November 3, 2023, filing [PDF] that revealed its US subsidiary Infosys McCamish Systems LLC "Has become aware of a cyber security incident resulting in non-availability of certain applications and systems in IMS.".
The notification was submitted by an outside attorney working on behalf of the Bank of America, names IMS as the source, and revealed that information on 57,028 people was leaked.
A sample of the letter [PDF] sent to those impacted by the incident reveals that on November 24, "IMS told Bank of America that data concerning deferred compensation plans serviced by Bank of America may have been compromised. Bank of America's systems were not compromised."
The term can also describe payouts under life insurance policies, which The Register mentions as IMS bills itself as "The center of excellence for Infosys's Life Insurance software solutions and services offerings in the US.".
The Register has asked Infosys to explain the incident.
News URL
https://go.theregister.com/feed/www.theregister.com/2024/02/13/infosys_bank_of_america_leak/
Related news
- GhostRace – New Data Leak Vulnerability Affects Modern CPUs (source)
- Shopping platform PandaBuy data leak impacts 1.3 million users (source)
- Week in review: 73M customers affected by AT&T data leak, errors led to US govt inboxes compromise (source)
- Home Depot confirms worker data leak after miscreant dumps info online (source)
- Cerebral to pay $7 million settlement in Facebook pixel data leak case (source)
- UnitedHealth confirms it paid ransomware gang to stop data leak (source)