The Maryland Attorney General's Office reported a data breach involving TD Bank, where a former employee improperly accessed personal information of customers between August 9, 2024, and December 11, 2024. The breach potentially exposed names, addresses, phone numbers, dates of birth, social security numbers, account numbers, debit card numbers, and transactional data. The number of affected individuals is not specified.
Source: https://ago.vermont.gov/document/2025-04-10-td-bank-data-breach-notice-consumers
TPRM report: https://www.rankiteo.com/company/td
"id": "td716072925",
"linkid": "td",
"type": "Breach",
"date": "8/2024",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Banking',
'name': 'TD Bank',
'type': 'Financial Institution'}],
'attack_vector': 'Insider Threat',
'data_breach': {'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Names',
'Addresses',
'Phone Numbers',
'Dates of Birth',
'Social Security Numbers',
'Account Numbers',
'Debit Card Numbers',
'Transactional Data']},
'description': 'A former employee of TD Bank improperly accessed personal '
'information of customers between August 9, 2024, and December '
'11, 2024.',
'impact': {'data_compromised': ['Names',
'Addresses',
'Phone Numbers',
'Dates of Birth',
'Social Security Numbers',
'Account Numbers',
'Debit Card Numbers',
'Transactional Data']},
'references': [{'source': "Maryland Attorney General's Office"}],
'threat_actor': 'Former Employee',
'title': 'TD Bank Data Breach',
'type': 'Data Breach',
'vulnerability_exploited': 'Improper Access Controls'}