A recent security breach at Desjardins, the largest credit union in Canada and one of the world’s biggest banks, highlights how insiders can put organizations and their data at risk. Last week, Quebec police informed the bank that one of its employees had taken advantage of their access to a Desjardins database in order to steal personal data belonging to 2.9 million customers (2.7 million individuals and 173,000 organizations). The employee has been fired.
The stolen data consists of last names, dates of birth, social insurance numbers, addresses, phone numbers, email addresses and other personally-identifiable information (PII). For businesses, the names and contact details were compromised, as well as the names of employees with access to business accounts. The rogue worker did not obtain access to login credentials or payment card information.
Read more: Desjardins, Canada’s largest credit union, announces security breach