A pedestrian passes the seal of the office of the currency controller displayed outside the organization’s headquarters in Washington, DC, March 20, 2019.
Andrew Harrer | Bloomberg | Getty images
The currency controller’s office said on Tuesday that a February hacking of its messaging systems has been described as “major incident” and exposed “very sensitive information”.
The violation, disclosed and resolved for the first time in February, involved information related to the “financial situation of the financial institutions regulated by the federal government used in its exams and its supervisory monitoring processes”.
The OCC, an agency that regulates and oversees national banks, said that it had learned the incident on February 11 and closed administrative accounts compromised the next day. The regulator said that he uses external cybersecurity experts for a full examination of the incident and launches an examination of his IT security policies to prevent other attacks.
“I have taken immediate measures to determine the full extent of the violation and to remedy long -standing organizational and structural gaps that have contributed to this incident,” said the acting controller Rodney Hood.
“There will be a complete responsibility for the identified vulnerabilities and the internal results that have led to unauthorized access,” he added.
The hackers had access to more than 150,000 emails from June 2023 until earlier this year, Bloomberg reported earlier, citing people knowing the issue.