Capital One has been fined $80 million over a 2019 data breach that exposed the financial and personal information of over 100 million individuals in the U.S. and Canada. The breach apparently involved exfiltration of data from a cloud-based repository. The bank also failed to properly assess the risk of moving its data to the cloud starting in 2015. The OCC also ordered Capital One to create an independent compliance committee that will report to the bank’s board of directors. A Capital One spokesperson noted that the company has changed its security policies since the 2019 breach.”]
Source: https://www.cuinfosecurity.com/capital-one-fined-80-million-over-2019-breach-a-14787