Police: 124 Sunflower Bank customers report fraudulent activityPosted: Updated:
Police in Salina say the number of Sunflower Bank customers reporting fraudulent activity on their accounts has risen to 124.
Sgt. David Villanueva told the Salina Post on Wednesday that police no longer a malware message shared on Tuesday is responsible for the loss of funds. He said that there doesn't yet appear to be a common point of compromise on the accounts.
The victims were asked where they last used their cards before the breach. Villanueva said some had used ATMs while others had not. ATMs that were used were all over Salina and were not just those belonging to Sunflower.
The majority of fraudulent transactions appears to be for cash. Locations where fraudulent transactions occurred include the following cities along or near Interstate 135 and Interstate 35.
- Kansas City
- Norman, Okla
- Springer, Okla.
- Ardmore, Okla.
- Denton, Texas
- Houston, Texas
Villanueva encouraged people to regularly check their accounts and report any suspicious activity.
Sunflower Bank issued the following statement on Tuesday:
“We take our security, and the security of our customers very seriously. Upon learning of these reports, we immediately reviewed our security protocols to confirm the issue was not present in our environment. We actively monitor our environment 24/7 to ensure security protocols remain effective. The message that was shared appears to be from pdfmaker-live and is not associated with Sunflower Bank or its websites.”
Salina authorities say they've received dozens of reports from Sunflower Bank customers saying that their accounts had been compromised.
Capt. Gary Hanus with the Salina Police Department has received 49 calls as of 7 a.m. Tuesday. Additionally, Saline County Undersheriff Brent Melander said the sheriff’s office had received six similar calls from county residents, the Salina Post reports.
Hanus said he was aware of fraudulent transactions on Sunflower accounts in Wichita, the suburbs of Wichita, Hutchinson and one location in Texas.
Authorities believe a redirect malware on the Sunflower Bank website was at least partially to blame for the breach. In some instances, Sunflower customers’ debit card information was used for purchases and in others, Sunflower Bank ATMs were used, Hanus said.
Hanus and Melander said their agencies are writing outside agency assist reports for law enforcement in the locations where the crimes occurred.
Sunflower Bank didn't immediately respond to the reports.
Customers are encouraged to check their financial accounts regularly for suspicious activity.