On July 19, 2018, Orrstown Bank in Shippensburg, Pennsylvania discovered that two of its employees fell prey to an email phishing scam. This scam compromised the information stored on these two employee's email accounts,exposing information of more than 50,000 customers.
As soon the intrusion was detected, Orrstown Bank restricted access to the compromised accounts and re-examined the existing security systems. The bank found that none of the core security systems were compromised in the attack, including its firewall. They notified the concerned authorities and sent letters to customers whose details were accessed. As a gesture of goodwill, Orrstown Bank is offering identity and credit monitoring services to affected customers free of cost for two years.
The forensics team hired by the bank assessed the attack and provided reports on the information stored in the affected email accounts. The bank has also taken steps to educate customers and employees to steer clear of scams like email phishing. As a precaution, customers have been advised to inspect their bank statements for any unauthorized transactions.
Don't want to make the news for the wrong reasons? Download ManageEngine Exchange Reporter Plus, a wholesome Exchange mailbox monitoring and reporting tool, to ward off any mail-bound threats
ManageEngine Exchange Reporter Plus can identify and respond to email-based threats that have potential to harm your business. This tool offers pre-configured reports, which will help you locate and isolate malicious emails based on:
You will receive weekly cybersecurity news soon!
2022 Zoho Corporation Pvt. Ltd. All rights reserved.