Bank OZK reports MOVEit related Data Breach
Bank OZK, Arkansas reported a data breach incident linked to a vulnerability within the MOVEit software, a popular file transfer tool used by one of the bank's business partners.
The bank was alerted by one of these partners about a data security breach involving the MOVEit file transfer software. The investigation confirmed that unauthorized parties gained access to specific files containing confidential customer data stored on the vendor's MOVEit server.
Upon discovering that unauthorized parties had accessed sensitive consumer data, Bank OZK undertook a comprehensive review of the compromised files to identify the extent of leaked information and the affected individuals. The breached data varies based on each individual, potentially including:
The number of affected individuals is not disclosed.
Bank OZK's informs that their internal computer systems were not compromised; rather, the compromised information was housed on the vendor's MOVEit server.
In response to the breach, Bank OZK promptly dispatched data breach notification letters on August 7, 2023, to all individuals impacted by the incident. These letters should provide recipients with a detailed account of which of their personal information was compromised.