TD Bank, the tenth-largest bank in the U.S. by total assets, has disclosed a cybersecurity breach that compromised customer data. In a filing with the Massachusetts state government, the bank revealed that a former employee had accessed and shared sensitive information from August to December 2022. The bank confirmed that the employee was terminated and is under investigation in cooperation with law enforcement.

The compromised data could include customers’ names, contact details, birth dates, account numbers, and transactional information. While TD Bank did not specify how many customers were affected, at least eight individuals in Massachusetts have been impacted.

In response to the breach, TD Bank is offering a free membership to an online fraud prevention and detection service for its customers. The bank is also facilitating a simple process for those wishing to close and open new accounts. Customers can even place a security freeze on their credit reports through the three major consumer reporting agencies, depending on their state of residence.

As of September 30, 2024, TD Bank had nearly $400 billion in assets, according to the Federal Reserve.