On August 28, I discussed a report that the FBI was investigating a possible "significant breach of corporate computer security" at JPMorgan and up to four other banks. JPMorgan confirmed at the time that it was taking "additional steps" to protect confidential information and working with law enforcement to determine the scope of the attack.

Yesterday, JPMorgan shed some more light on just how sweeping this breach appears to have been. The firm disclosed in a Form 8-K filing that the cyber attack against it had compromised contact information data for approximately 76 million households and 7 million small businesses. Such data included the user's name, address, phone number and email address.

JPMorgan also stated that thus far its investigation has not shown any evidence that customers' account information (account numbers, passwords, user IDs, dates of birth or Social Security numbers) was compromised, nor evidence of "any unusual customer fraud related to this incident."

According to a Bloomberg report, the breach "affected anyone who visited the company’s websites, including Chase.com, or used its mobile app." JPMorgan declined to comment on whether the breach affected President Obama, who reportedly used his "JPMorgan card" in July 2014 at a barbecue restaurant in Austin, Texas. "To protect customers' privacy, we do not publicly confirm, deny or otherwise identify customers," a JPMorgan spokesperson said.

Topics