InfoSecBulletin Cybersecurity for mankind
Because of disclosing incorrect and negative data, The Consumer Financial Protection Bureau (CFPB) on Wednesday fined TD Bank, one of North American leading financial institutions $28 million to consumer reporting agencies.
According to the agency, The inaccurate data included “systemic errors about credit card delinquencies and bankruptcies,”. Nearly $8 million of the $28 million fine will be sent to victims who were impacted, CFPB said.
CVSS 10.0 Flaw
Critical flaw in Siemens OZW Web Servers Enable Unauthenticated RCE
Microsoft Patch Tuesday May 2025: 72 flaws, 5 Actively Exploited Zero-Day
OTP glitch disrupted NID services across the country
Google to pay Texas $1.4 billion for location tracking practices
YouTube geo-blocks at least 4 Bangladeshi TV channels in India
Microsoft Patches Four Critical Azure and Power Apps Vulns
Qilin Ransomware topped April 2025 with 45+ data leak disclosures
SonicWall Patches 3 Flaws in SMA 100 Devices
Top Ransomware Actively Attacking Financial Sector: 406 Incidents Disclosed
Critical (CVSS 10) Flaw in Cisco IOS XE WLCs Allows RRA
CFPB said, The bank allegedly shared faulty information even though it “knew or suspected” some of the accounts were fraudulent. The agency said, though TD bank knew about the fraudulent account it didn’t do nothing.
“By April 2023, instead of making sure only accurate information about its customers was sent to consumer reporting companies, TD Bank kept sharing fraudulent information about those accounts as if it belonged to the bank’s customers,” CFPB said.
The bank broke the law, violating both the Fair Credit Reporting Act and the Consumer Financial Protection Act, according to CFPB. Additionally, customers who disputed TD Bank’s bad information received no help, CFPB alleged, saying that the bank “failed to conduct proper investigations and sometimes to conduct any investigation at all.”
“long before this settlement, TD self-identified these matters and voluntarily and proactively implemented enhancements to our furnishing and dispute handling practices”, TD bank statement reads and also mentioned “TD cooperated fully to resolve this matter and is committed to continuing to deliver on its responsibilities to its customers,”.
CFPB Director Rohit Chopra said , “The CFPB’s investigation found that TD Bank illegally threatened the consumer reports of its customers with fraudulent information and then barely lifted a finger to fix it,”.
“Rather than treating its customers fairly and following the law, TD Bank’s management clearly cared more about growth and expanding its empire through mergers,” Chopra added, calling on regulators to scrutinize the bank’s practices moving forward.
TD Bank Group, the bank’s parent company, reported $1.97 trillion in assets as of mid-2024, according to CFPB. With 10,000 branches, TD Bank is the tenth-largest commercial bank in the U.S.
