Major U.S. bank holding firm Capital One has confirmed that over 16,500 customers had their data exposed following the February cyberattack against Pennsylvania-based debt purchasing company NCB Management Services, reports The Record, a news site by cybersecurity firm Recorded Future.