New Peoples Bank (NPB) said Wednesday that an "unauthorized person" may have acquired personal information of customers, including social security numbers, following a cybersecurity incident earlier this month.
NPB learned about the incident on June 15. The person gained access to NPB systems on June 9. Other information the person may have accessed include driver's license numbers, financial account information, and electronic signatures.
NPB systems have been restored and all transactions from June 15 forward have been processed.
The bank is offering a complimentary one-year membership with Experian’s IdentityWorksSM. Customers are asked to visit NPB’s website – https://www.newpeoples.bank/ – and look for the link to “Cybersecurity Incident.”
NPB now has a dedicated call center that customers can call regarding the incident. Folks can call 855-516-3784, Monday through Friday, between 9:00 a.m. and 6:30 p.m. Eastern Time (excluding major U.S. holidays) for more information.
Here is the full release from NPB:
(“NPB”), the wholly owned subsidiary of New Peoples Bankshares, Inc. (OTCBB: NWPP), announces that it recently experienced a cybersecurity incident that temporarily interrupted the operability of its computer systems. Since learning of the incident, NPB worked around-the-clock to quickly and safely restore its systems from backups and resume normal operations. As of the date of release, NPB systems have been restored and banking operations have resumed. All transactions from June 15 forward have been processed.
Since learning of the incident on June 15, 2022, NPB has been conducting an investigation into the nature and scope. A third-party cybersecurity firm was engaged to assist in the investigation, and law enforcement and regulators were notified. The investigation revealed that an unauthorized person gained access to NPB systems. Through its investigation, NPB determined that some personal information of its customers, shareholders, and employees may have been subject to unauthorized access as a result of this incident. Specifically, the investigation determined that the unauthorized person gained access to NPB systems on June 9, 2022. Although NPB had protocols and security technology in place to help prevent this access, the unauthorized person was able to evade many of these defenses. NPB determined that some customer information may have been accessed or acquired by the unauthorized person, including Social Security numbers, driver’s license numbers, financial account information, and/or electronic signatures.
NPB is approaching this situation with the utmost seriousness and understands the concern this incident may cause its customers. As a result, customers will be offered a complimentary one-year membership with Experian’s IdentityWorksSM. This product helps detect possible misuse of personal information and provides identity protection support. For more information on IdentityWorksSM, including instructions on how to activate the complimentary one-year membership, as well as some additional steps individuals may consider taking to protect their personal information, please visit NPB’s website – https://www.newpeoples.bank/ – and look for the link to “Cybersecurity Incident.”
NPB encourages everyone to remain vigilant by reviewing their account statements and credit reports for any unauthorized activity. If individuals see charges or activity they did not authorize, please contact the relevant financial institution or the credit bureau reporting the activity immediately.
NPB has established a dedicated call center to help answer any questions customers may have about the incident or how to sign up for these services. Please call 855-516-3784, Monday through Friday, between 9:00 a.m. and 6:30 p.m. Eastern Time (excluding major U.S. holidays) for more information.
NPB sincerely regrets any inconvenience or concern this incident may have caused, and looks forward to continuing to serve its customers and communities. Safeguarding the information entrusted to it is a responsibility NPB takes seriously. The bank is working towards enhancing its existing security protocols and safeguards even further to help prevent unauthorized access to its systems in the future.