HomeTown Bank, N.A. discovered that a skimming/shimming device had been placed on an ATM at the bank’s branch .
HomeTown promptly launched an investigation and notified law enforcement.
HomeTown believes that this incident affected only those individuals who conducted card transactions at the subject ATM 2:00 pm on January 18, 2018 and 2:00 pm on January 19, 2018.
The device may have acquired individuals’ names, card numbers, card expiration dates and personal identification numbers (PINs).
HomeTown’s core banking systems were not compromised or impacted as a result of this incident.
Source: https://www.databreaches.net/tx-hometown-bank-data-breach/
TPRM report: https://scoringcyber.rankiteo.com/company/hometown-bank-n-a-
"id": "hom10558622",
"linkid": "hometown-bank-n-a-",
"type": "Breach",
"date": "02/2018",
"severity": "50",
"impact": "2",
"explanation": "Attack limited on finance or reputation"{'affected_entities': [{'industry': 'Financial Services',
'name': 'HomeTown Bank, N.A.',
'type': 'Bank'}],
'attack_vector': 'Physical Tampering',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['names',
'card numbers',
'card expiration dates',
'personal identification numbers '
'(PINs)']},
'description': 'HomeTown Bank, N.A. discovered that a skimming/shimming '
'device had been placed on an ATM at the bank’s branch.',
'impact': {'data_compromised': ['names',
'card numbers',
'card expiration dates',
'personal identification numbers (PINs)'],
'systems_affected': 'ATM'},
'initial_access_broker': {'entry_point': 'ATM'},
'motivation': 'Financial Gain',
'response': {'law_enforcement_notified': True},
'title': 'ATM Skimming/Shimming Incident at HomeTown Bank',
'type': 'ATM Skimming/Shimming',
'vulnerability_exploited': 'ATM Security'}