CNET News.com has more.

Banking giant HSBC has been accused of leaving its online accounts exposed for more than two years due to a security flaw, according to reports. According to a story in The Guardian on Thursday, the bank left 3.1 million customers exposed due to a defect in how people access their online accounts.

HSBC downplayed the severity of the situation, saying that the supposed flaw had not been exploited by criminals, and that it would be "interested to hear any expert commentary on the security of its personal Internet banking service." "It is an extremely sophisticated attack that would require a particular and time-consuming focus on one individual victim. It is therefore not likely to be a profitable way for criminals to behave," said HSBC in a statement.