The accounts of more than 450,000 people who participate in certain employee benefit retirement plans and receive monthly payments from JPMorgan were compromised earlier this year, New Jersey Advance Media has learned.
The company said this was not a cyberattack, but rather a software issue that allowed three “authorized system users” to gain unauthorized access to information about the account.
The breach was discovered on February 26, 2024, and revealed names, addresses, Social Security numbers, payment amounts and deductions, as well as bank routing and account numbers for those receiving payments via direct deposit, the company said in a letter. mentioned in. Affected Customers.
“Three authorized system users employed by our customers or their agencies accessed participant data that they did not have the right to see due to a software system issue,” the spokesperson said.
The company said these users ran a “limited number of reports” containing customer information between August 26, 2021 and February 23, 2024, totaling approximately 451,000 people. It is said that it went up to
“We promptly addressed the access issue and applied the software update,” the letter tells customers.
The company said it was offering two years of free credit monitoring through Experian, although there was no indication that the information had been “misappropriated.”
Related:
Roku data breach grows: The company says about 600,000 users were compromised.
A month ago, a major cyber attack crippled the healthcare payment system. Not fixed yet.
I went to the self-checkout at ShopRite. When I forgot my credit card, I was on high alert.
Support the local journalism you rely on by subscribing today.
karin price muller may reach KPriceMueller@NJAdvanceMedia.com. Follow her on X @KPMueller.