At approximately 1:45 a.m. on Saturday, March 14, 2020, The Jamaica National Group experienced a data security breach as a result of a cyberattack on our systems through ransomware. On investigation, we discovered that there was unauthorised access to our system which has impacted our ability to operate as usual.
The JN Group’s Information Technology and Cybersecurity teams immediately acted to contain the effects of the malware and sought to identify the source of the sophisticated attack.
The Jamaica Constabulary Force’s Major Organised Crime and Anti-Corruption Agency, and other security agencies were immediately contacted and have been investigating the matter; and these investigations are continuing.
This incident has caused some disruption to our services and has affected members and customers, some of whom were unable to access their accounts on March 14 and 15.
However, no customer account was affected, as accounts are kept and protected by a separate system. Notwithstanding, we apologise to all our members and customers, especially as this incident occurred during such a difficult period in our country.
Please be assured that no member or customer will suffer any financial loss directly related to this cyber incident. Your deposits are safe and protected by JN Bank.
Although our services are now substantially back online, we have identified that data relating to some members and customers may possibly have been taken during the data security incident. While we have no reason to believe that this information has been used in any fraudulent activity, we are taking the precaution to inform members, customers and the public at large.
We are sincerely sorry for any concern and inconvenience this may have caused you and we will continue to uphold the highest standards and maintain best practices to ensure that your money and data are secure.
As required by law, we have also taken the necessary steps to advise the regulatory agencies in all countries in which we operate.
The data security and privacy of our members and customers are of paramount importance to us; therefore, we have already taken several measures to minimise the possibility of a reoccurrence.
We are undertaking a complete review of our IT security to further strengthen our infrastructure.
As this incident involved criminal activity, it is the subject of a police investigation, therefore, we are unable to provide further information at this time. However, please be assured that we will be providing full support to members and customers who have been affected.
We deeply regret any inconvenience experienced by our customers, suppliers and other stakeholders during this period.