- Capital One confirms data breach affecting 16,779 customers, with personal and account information compromised; NCB Management Services identified as the source of the breach.
- In response, NCB secures services from Kroll for two years of free identity monitoring, including credit monitoring and identity theft restoration, for affected customers.
MCLEAN, VA – In a recent development, Capital One has confirmed a data breach that compromised the personal information of 16,779 individuals. The breach was discovered on April 26, 2023, having occurred between February 1 and February 4 of the same year.
Adam Cohen, Associate General Counsel at Capital One, submitted a notification of the breach to Attorney General Frey. According to the notification, NCB Management Services, a national accounts receivable company providing account services to financial institutions, had fallen victim to an external system breach.
On February 4, NCB discovered that an unauthorized third party had gained access to its systems. Following a thorough investigation, NCB informed Capital One in April that some of the compromised data related to a set of credit card accounts owned by Capital One.
The breached information included the first and last names of affected individuals, along with one or more pieces of the following data: physical address, Social Security Number, account number, and account status. While this constitutes a significant breach of personal information, NCB has reported that it currently has no evidence suggesting any misuse of the compromised data.
As a response to the breach, NCB has notified federal law enforcement authorities and is currently cooperating with them. A notice has also been sent out to 222 Maine residents affected by this incident, informing them of the breach and the potential compromise of their personal data.
To help mitigate the fallout of the incident, NCB has arranged for Kroll, a leading identity monitoring service provider, to offer two years of free identity monitoring services to affected customers. This includes credit monitoring, $1 million identity fraud loss reimbursement, fraud consultation, and identity theft restoration. The customer notice contains further information about steps customers can take to protect themselves from potential fraud.
Capital One has reiterated its commitment to the security of customer data and is working with NCB to ensure that such an incident does not recur.