Unlike a hack where nefarious characters specifically steal personal banking info, there's a chance that your personal banking data has been 'scraped'.
You tend to hear about the former, either via the media or from your bank, card company or the business that has been hacked. On the other hand, data 'scrapes' tend to gather a broader range of personal data, not specifically targeting banking info and appears to not set off alarms. Of course, some of that trove of data may have some banking information or can be matched up with something that has.
I became aware of the difference a few years back when I learned via an IT-related website that LinkedIn and FaceBook (twice) had data scrapes. I am not a member of the FaceBook but LinkedIn did not advise their membership that this had happened. Furthermore, I asked a friend who is a FB user and he said he hadn't been notified by FB of any security or personal data issues either.
I then used a web-based utility that checks if email addresses are secure or has been 'lifted' and linked to fraud and found that the email address I used as my LinkedIn login was red-flagged. After closing that email account and setting up new email accounts with a different ISP, I spent a few days purging online accounts that either used the dodgy email address for a login or were no longer being used. Bit of a ball-ache as the dodgy email address had been in use since Al Gore invented the internet.