What happened
In December 2019 P&N Bank suffered a breach at a third-party hosting provider during a CRM upgrade, exposing about 100,000 customers’ names, contact details, age, customer and account numbers, and account balances [pnb-bleeping]. The bank said funds, government-ID numbers and identity documents were held separately and not accessed [pnb-bleeping], [pnb-ff].
Current status
Disclosed. WA Police and federal authorities were engaged [pnb-bleeping]. The ~100,000 figure is the bank’s own.
Why it matters
Account balances plus contact details are a potent combination for targeted scams, and the incident again turns on a third-party system rather than the bank’s core platform.