Australia’s Commonwealth Bank says two magnetic tapes containing transaction information for 19.8 million accounts went missing two years ago. Tapes were supposed to be destroyed by Fuji Xerox, a contractor that offers data destruction services. The bank says it launched an investigation on May 9, 2016, after it didn’t receive certification that the tapes were destroyed. The tapes contained customer names, addresses, account numbers and transaction details, but not passwords or PINs “that could be used to enable account fraud” Because the tapes went missing, Australia’s mandatory breach notification law doesn’t apply.”]
Source: https://www.cuinfosecurity.com/australian-bank-lost-data-for-198-million-accounts-a-10967