Hackers are trying to promote what they are saying is confidential data belonging to hundreds of thousands of Santander employees and prospects.
They belong to the identical gang which this week claimed to have hacked Ticketmaster.
The financial institution – which employs 200,000 individuals worldwide, together with round 20,000 within the UK – has confirmed knowledge has been stolen.
Santander has apologised for what it says is “the priority it will understandably trigger” including it’s “proactively contacting affected prospects and staff immediately.”
“Following an investigation, we’ve now confirmed that sure data regarding prospects of Santander Chile, Spain and Uruguay, in addition to all present and a few former Santander staff of the group had been accessed,” it mentioned in a assertion posted earlier this month.
“No transactional knowledge, nor any credentials that may enable transactions to happen on accounts are contained within the database, together with on-line banking particulars and passwords.”
It mentioned its banking techniques had been unaffected so prospects might proceed to “transact securely.”
In a put up on a hacking discussion board — first noticed by researchers at Darkish Net Informer — the group calling themselves ShinyHunters posted an advert saying that they had knowledge together with
- 30 million individuals’s checking account particulars
- 6 million account numbers and balances
- 28 million bank card numbers
- HR data for workers
Santander has not commented on the accuracy of these claims.
ShinyHunters have beforehand offered knowledge confirmed to have been stolen from US telecoms agency AT&T.
The gang can also be promoting what it says is a large quantity of personal knowledge from Ticketmaster.
The Australian authorities says it’s working with Ticketmaster to handle the difficulty. The FBI has additionally supplied to help.
Some specialists have mentioned ShinyHunters’ claims must be handled with warning, as they might be a publicity stunt.
Nonetheless, researchers at cyber-security firm Hudson Rock declare that the Santander breach and the obvious Ticketmaster one are linked to a significant ongoing hack of a big cloud storage firm referred to as Snowflake.
Hudson Rock says it has spoken to the perpetrators of the alleged Snowflake hack – who declare that they gained entry to its inner system by stealing the login particulars of a member of Snowflake employees.
In a press release on Friday, Snowflake mentioned it was conscious of “doubtlessly unauthorised entry” to a “restricted quantity” of buyer accounts.
It mentioned it appeared hackers had used login data to entry a demo account owned by a former Snowflake worker.
That account “didn’t comprise delicate knowledge,” the corporate mentioned.
“Now we have no proof suggesting this exercise was attributable to any vulnerability, misconfiguration, or breach of Snowflake’s product,” it added.
