Cyber Incident Victim: River City Bank

On September 29, 2020, River City Bank identified unauthorized activity involving an employee who downloaded customer data to a personal storage device outside their authorized duties. The bank immediately blocked the employee’s system access upon discovery and initiated an internal investigation. Law enforcement agencies were engaged to assist with the inquiry. The compromised data was subsequently transferred by the employee to an unidentified third party, though the bank’s notification did not specify the recipient’s identity or the intended purpose of the data transfer. No legitimate business reason existed for this data movement, as it fell outside the employee’s normal responsibilities.

River City Bank notified affected customers about the breach and submitted documentation to the California Attorney General’s Office as part of regulatory compliance. The bank’s public disclosure confirmed the incident stemmed solely from insider wrongdoing without external system intrusion. Investigators found no evidence indicating actual misuse of the stolen customer information at the time of notification. The bank did not disclose the number of affected customers, data categories involved, or technical methods used to detect the unauthorized download. Containment efforts focused on revoking the employee’s access privileges and securing internal systems, though no additional security enhancements or forensic findings were detailed in the submitted notification. Law enforcement involvement remained active as of the notification date.