Citi, Capital One involved in widening data breach

* Customer names, e-mail addresses exposed

* Large Epsilon data breach widens to many U.S. customers

NEW YORK, April 3 (Reuters) – Citigroup Inc (C.N: Quote, Profile, Research) and
Capital One Financial Corp (COF.N: Quote, Profile, Research) were part of a large data
breach that exposed the names and e-mail addresses of many
large companies’ customers, including those at some of the
nation’s largest banks.

The online marketer Epsilon, a unit of Alliance Data
Systems Corp (ADS.N: Quote, Profile, Research), said on Friday that a person outside the
company hacked into some of its clients’ customer files. The
vendor sends more than 40 billion e-mail ads and offers
annually, usually to people who register for a company’s
website or give their e-mail addresses while shopping.

Citigroup customer names and some credit card customers’
e-mail addresses — but no account information — were exposed
as part of the data breach, the third-largest U.S. bank said on
Saturday.

Capital One also said the Epsilon hacker accessed its
customer e-mail addresses, but no personally identifiable
information.

JPMorgan Chase & Co (JPM.N: Quote, Profile, Research), the second-largest U.S. bank,
and Kroger Co (KR.N: Quote, Profile, Research), the biggest U.S. supermarket operator,
said on Friday that some customers had their names and e-mail
addresses exposed as part of the data breach. [ID:nL3E7F13F4]

Citigroup announced that it had been affected on Saturday
evening. Spokesman Sean Kevelighan said the bank started
informing its customers of the breach on Friday through a link
on its website.
(Reporting by Maria Aspan, additional reporting by Jonathan
Spicer, editing by Maureen Bavdek)

Citi, Capital One involved in widening data breach