The Bank of Canton recently reported a significant data breach stemming from a breach involving one of its vendors and the file-transfer application MOVEit, impacting consumers’ sensitive information. The breach, disclosed in a notice to the Attorney General of Massachusetts on October 23, 2023, resulted in unauthorized access to customer data, including names, Social Security numbers, and account numbers.
The incident was first brought to the Bank of Canton’s attention by the unnamed vendor, described as a major publicly traded company serving thousands of businesses in the financial industry. The vendor reported unauthorized access to its MOVEit server around May 27, 2023, leading to a breach that affected Bank of Canton customers.
Upon notification, the Bank of Canton collaborated with its vendor to assess the breach’s extent, confirming unauthorized access to certain customers’ personal information. By September 22, 2023, a comprehensive review of compromised files was completed, identifying affected individuals and the specific nature of breached information.
To address the breach, the Bank of Canton initiated data breach notification letters on October 23, 2023, providing affected individuals with detailed lists of compromised information.
Established in 1835, the Bank of Canton, headquartered in Canton, Massachusetts, offers traditional banking services such as personal and business accounts, credit cards, loans, and investment products. Operating four branches in Massachusetts and a mortgage center in Auburn, Massachusetts, the bank employs over 114 individuals, generating approximately $30 million in annual revenue.