Hackers are offering to sell the stolen personal details of millions of Santander customers and staff, two weeks after the Spanish bank warned many accounts had been compromised, according to the Financial Times. In an advert on a hacking forum, a group called ShinyHunters has offered data including bank account details of 30mn customers, numbers for 28mn credit cards, balances for 6mn accounts and personal information on staff.
A person with knowledge of the compromised data said the hackers’ claims of 30mn accounts was too high. Santander has about 20mn customers in the three markets where accounts were compromised and employs 200,000 people around the world.
The details in the advert suggest that this is one of the largest cyber attacks on a bank, though Santander declined to verify the hackers’ statement.
The advert, seen by the Financial Times, offers to sell the data for $2mn and adds: “Santander is also very welcome if they want to buy this data.”
Two weeks ago, Santander admitted that a database hosted by a third-party provider had been compromised. The bank said in a statement that information about customers in Spain, Chile and Uruguay had been accessed, as well as for all current and some former staff.
“No transactional data, nor any credentials that would allow transactions to take place on accounts are contained in the database, including online banking details and passwords,” the bank said at the time.
Banking 4.0 – „how was the experience for you”
„So many people are coming here to Bucharest, people that I see and interact on linkedin and now I get the change to meet them in person. It was like being to the Football World Cup but this was the World Cup on linkedin in payments and open banking.”
Many more interesting quotes in the video below: