Solution provider Infosys has revealed that a breach of a U.S.-based subsidiary last fall impacted more than 57,000 Bank of America customers.
The breach of Infosys McCamish Systems affected customers with deferred compensation plans through Bank of America, according to a disclosure posted on the Maine attorney general website.
[Related: 10 Major Cyberattacks And Data Breaches In 2023]
The breach impacted a total of 57,028 individuals, according to the filing.
“It is unlikely that we will be able to determine with certainty what personal information was accessed as a result of this incident,” Infosys said in the disclosure. “According to our records, deferred compensation plan information may have included your first and last name, address, business email address, date of birth, Social Security number, and other account information.”
ADVERTISEMENT
In November, India-based Infosys had notified regulatory authorities about a “cybersecurity event” impacting its Atlanta-based subsidiary.
CRN has reached out to Infosys for comment. Bank of America declined to comment Tuesday.
The disclosure indicates that on Nov. 3, Infosys McCamish Systems “was impacted by a cybersecurity event when an unauthorized third party accessed IMS systems.”
Then on Nov. 24, “IMS told Bank of America that data concerning deferred compensation plans serviced by Bank of America may have been compromised,” Infosys said in the disclosure. “Bank of America’s systems were not compromised.”
Infosys McCamish Systems, which resulted from Infosys’ 2009 acquisition of McCamish Systems, is a provider of software and services in the U.S. to more than 34 insurance companies.