A regional financial institution with operations spanning Pennsylvania, Ohio, and West Virginia has disclosed a significant cybersecurity breach that compromised sensitive customer information. According to a regulatory filing submitted to the U.S. Securities and Exchange Commission, the leak included highly personal data, such as full names, dates of birth, and Social Security numbers. The institution attributed the exposure to the accidental integration of an unauthorized artificial intelligence software application.

While the specific AI platform involved has not been publicly identified, the company indicated that the incident likely stemmed from an employee uploading internal customer records into an online chatbot. This action may have inadvertently granted the third-party provider of the AI tool access to restricted sensitive data. The bank has not yet provided a definitive count of how many accounts were compromised, but it has begun the process of notifying affected clients as mandated by law.

This security failure highlights the escalating risks associated with the rapid adoption of generative AI tools within the financial sector. As employees increasingly turn to external AI services to streamline workflows, the potential for accidental data leakage has become a primary concern for cybersecurity experts. The bank is currently conducting a comprehensive investigation to determine the full scope of the exposure and to prevent similar incidents from occurring in the future.