Banco Popular Puerto Rico reports MOVEit related data breach through PwC Audit
Learn More
Banco Popular, Puerto Rico's largest bank reported a data breach in connection with the MOVEit ransomware attack. The cause of the data breach is that data was exposed as part of PwC's regular audit work with the bank.
Banks are required to engage auditing and accounting services, such as those provided by PwC. In fulfilling its auditing obligations, Banco Popular had to share customer information with PwC for the necessary independent validations to facilitate the issuance of financial statements.
Upon discovering the breach, PwC initiated an investigation and ceased the use of the affected software. The investigation found that specific compromised files contained customer personal information.
The exposed data includes
- names,
- Social Security numbers,
- mortgage loan numbers,
- related mortgage information.
Around 82,217 Banco Popular customers could potentially be impacted by this breach.
To assist affected customers in safeguarding their credit, the letters sent to customers provides guidance on protective measures and offers two years of free credit monitoring from Equifax.
