The State of New Jersey
NJ Department of Banking and Insurance
Home > Consumer Information > Personal Finance > Financial Institutions > Epsilon Data Breach Hits Banks
Consumer Alert: Epsilon Data Breach Hits Banks
On March 30, Epsilon, a large email marketing firm whose clients include several large financial institutions, reported “an unauthorized entry” into its email system which exposed clients’ customer data. Epsilon reported that the data breach could involve thousands of stolen email addresses of major bank clients who signed up to receive a retail offer or alert via email.

As of April 3, the customers list included financial services institutions such as Capital One, US Bank, JPMorgan Chase, Citi and Barclays Bank of Delaware.

The company warned that thieves may use the information to launch a phishing campaign to trick users into disclosing more critical data.

Thieves may send email notices that claim to be from a consumer’s bank, credit card company or a merchant and ask them for account information to solve a supposed problem. This scam is called “phishing.”

For more information, visit press release on Epsilon’s data breach.


The Department urges consumers to be careful of “phishing” scams

Epsilon reported that the accessed files did not include any customer information other than email addresses. Even so, customers should “exercise extreme caution,” as email addresses are all cyber-criminals need to initiate a phishing attack.

Users can expect to see more spam, and should be vigilant about email offers that ask for personal information or have links to other sites that ask for personal information.

Many of these phishing attacks tend to take the form of security alerts — informing users that their accounts have been compromised and they should verify their log-in credentials to reset their accounts — or direct marketing scams promising special deals that require a credit card number.
Consumers should never provide their PIN number, account number or other personal information in response to spam or other unsolicited emails.

For more information on phishing go to:

For more information on protecting your identity and credit go to:

OPRA is a state law that was enacted to give the public greater access to government records maintained by public agencies in New Jersey.
Adobe Acrobat
You will need to download the latest version of Adobe Acrobat Reader in order to correctly view and print PDF (Portable Document Format) files from this web site.
state seal
Copyright © 2008, State of New Jersey
New Jersey Department of Banking and Insurance