Intesa Sanpaolo Alerts Authorities After Investigating the Employee-Orchestrated Data Breach

• The Intesa Sanpaolo bank informed Italy’s authorities about the recent data breach caused by a former employee of the company.
• While the bank maintains that the issue was not a cybersecurity lapse, Bari prosecutors are investigating the issue.
• Thousands of customers’ account details were reportedly affected, including some high-profile figures.

Italy's largest banking group, Intesa Sanpaolo, disclosed that it had informed the country's data protection authority of a data breach carried out by one of its employees. The notification followed a meticulous and extended investigation into the incident.

This statement follows a report from the ANSA news agency, which said both the bank and the employee were under investigation regarding the alleged data violation, according to Reuters. 

The Intesa Sanpaolo breach reportedly affected the account data of thousands of customers, including high-profile figures such as Prime Minister Giorgia Meloni and former Prime Minister Mario Draghi.

Intesa Sanpaolo emphasized that its internal control system identified unusual data access patterns, prompting an internal inquiry. The bank maintains that the issue was not a cybersecurity lapse but rather misconduct by a single individual. 

Intesa disclosed that it alerted Italy’s data protection authority only after a thorough investigation provided a comprehensive understanding of the breach. The bank had not received formal notification of being under investigation but acknowledged the suspension and subsequent dismissal of the employee responsible.

The southern city of Bari’s prosecutors are investigating the breach, focusing on allegations of unauthorized computer system access and the attempted theft of sensitive information. They are also examining whether the bank delayed notifying the authorities about the breach. 

Italian law holds companies accountable for offenses by their employees, but an investigation does not necessarily result in charges.

Following the breach, the Bank of Italy has requested detailed information on the incident and the measures Intesa plans to implement. Legal representatives for some affected customers have sought information from the prosecutors, indicating potential legal action. 

Prime Minister Meloni addressed the incident publicly, expressing her expectation for a thorough judicial investigation. 

In other news, the September data breach targeting the London branch of ICBC Bank was claimed by the Hunters International ransomware group, which reportedly exfiltrated over 5.2 million files from the Chinese bank’s database.