Deutsche Bank has confirmed a data breach on one of its external service providers, exposing customer data in a likely MOVEit Transfer data-theft attack. The breach potentially affects over 100 companies in more than 40 countries, with links to the Clop ransomware’s wave of MOVEit attacks.
Furthermore, Deutsche Bank stated that its own systems were not affected, but customers in Germany who used the account switching service between 2016 and 2020 may have been impacted. The bank assured that only a limited amount of personal data was exposed.
At the same time, the Deutsche Bank is actively investigating the incident and implementing measures to enhance data security and prevent future breaches. Although cybercriminals cannot directly access accounts using the exposed data, unauthorized direct debits may be attempted.
To address this risk, the bank has extended the period for unauthorized direct debit returns to 13 months, providing customers with ample time to detect and report unauthorized transactions.
Other major banks and financial service providers, including Commerzbank, Postbank, Comdirect, and ING, were also impacted by the security incident. The breached service provider, Majorel, confirmed the cyberattack and the exploitation of a flaw in the MOVEit software.
While Commerzbank’s customers were not affected directly, its subsidiary Comdirect experienced indirect impact. Postbank confirmed limited impact without disclosing client numbers, and ING stated that a “low four-digit number of customers” using account-switching services were affected.