US and Canadian data breaches cause concern
MONTREAL – The Canadian Imperial Bank of Commerce (CIBC) announced in mid-January that its mutual fund subsidiary, Talvest Mutual Funds, has lost a backup computer drive containing information on around 470,000 clients.
The loss – and the massive potential security breach it may have caused – is being investigated by Canada's privacy commissioner Jennifer Stoddart. It was also reported extensively in the Canadian media.
"My office is committed to carrying out a thorough investigation into this matter and to ensuring that preventive and corrective measures are put in place so that this does not reoccur," Stoddart said in a statement.
CIBC said there is no evidence to suggest the lost backup file has been "inappropriately accessed". However, the bank will be notifying all affected clients by letter, compensating them for monetary loss arising directly from unauthorised access of personal information contained on the file, and providing affected clients with the opportunity to enroll in a credit monitoring service at no cost.
The lost data comes at the same time as US retailer TJ Maxx announced that customer credit card data had been stolen from one of its computers in May 2006. The breach was discovered in December 2006, and it is believed that more than 200,000 customers are affected. US banking associations and politicians have waded into the discussion about how retailers should work with banks to keep customer data safe.
Only users who have a paid subscription or are part of a corporate subscription are able to print or copy content.
To access these options, along with all other subscription benefits, please contact info@risk.net or view our subscription options here: http://subscriptions.risk.net/subscribe
You are currently unable to print this content. Please contact info@risk.net to find out more.
You are currently unable to copy this content. Please contact info@risk.net to find out more.
Copyright Infopro Digital Limited. All rights reserved.
As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (point 2.4), printing is limited to a single copy.
If you would like to purchase additional rights please email info@risk.net
Copyright Infopro Digital Limited. All rights reserved.
You may share this content using our article tools. As outlined in our terms and conditions, https://www.infopro-digital.com/terms-and-conditions/subscriptions/ (clause 2.4), an Authorised User may only make one copy of the materials for their own personal use. You must also comply with the restrictions in clause 2.5.
If you would like to purchase additional rights please email info@risk.net
More on Regulation
US blows the floors off Basel III
Barr criticises “downward deviations” in US rule; Bowman rejects “blind adherence” to global standards
Basel III endgame – a timeline
A review of Risk.net’s coverage of the US implementation saga
Leaked EU plans offer extra temporary relief for FRTB models
Risk factors would need only two observations to be modellable. Do changes foreshadow US Basel III?
Iosco chief talks cyber, AI and clearing
Buenaventura discusses Iosco’s role in aiding market resilience and cross-border co-operation
US regulators bid to save FRTB IMA, but it’s no small task
Even if industry wish-list is granted, a 2028 start date might be too soon for model adoption
Hopes rise for cross-product netting under SA-CCR
Banks want rule change in Basel III endgame to lower capital costs of clearing UST repos
Long way round: EU banks lament credit spread saga
EBA ditches some of banks’ preferred qualitative reasonings – and shortcuts – for CSRBB exclusion
Iosco chief sees no need for CCPs to hold more capital
CCPs have shown resilience in volatile times without extra skin-in-the-game, says Buenaventura
