Bank of America

Business clients applying for Paycheck Protection Program (PPP) loans with Bank of America have had their personal and business information exposed in a data breach.

The data breach occurred on April 22 as Bank of America uploaded customers’ PPP loan applications to the Small Business Administration’s (SBA) online testing system, which allowed lenders to test application submissions.

During the testing process, Application information was potentially visible to other lenders and their third-party vendors.

The exposed data included both business and clients’ personal information.

The affected business data may include business names, addresses, and tax identification numbers.

Affected personal data may include names, addresses, Social Security numbers, phone numbers, email addresses, and citizenship information.

Source: https://www.identityiq.com/articles/bank-of-america-discloses-payroll-protection-program-data-breach/#:~:text=The%20exposed%20data%20included%20both,email%20addresses%20and%20citizenship%20information.

"id": "BAN2212291222",
"linkid": "bank-of-america",
"type": "Data Leak",
"date": "04/2020",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"