Hackers are trying to promote what they are saying is confidential info belonging to thousands and thousands of Santander workers and clients.
They belong to the identical gang which this week claimed to have hacked Ticketmaster.
The financial institution – which employs 200,000 individuals worldwide, together with round 20,000 within the UK – has confirmed information has been stolen.
Santander has apologised for what it says is “the priority this may understandably trigger” including it’s “proactively contacting affected clients and staff instantly.”
“Following an investigation, now we have now confirmed that sure info regarding clients of Santander Chile, Spain and Uruguay, in addition to all present and a few former Santander staff of the group had been accessed,” it stated in a assertion posted earlier this month.
“No transactional information, nor any credentials that might permit transactions to happen on accounts are contained within the database, together with on-line banking particulars and passwords.”
It stated its banking techniques have been unaffected so clients might proceed to “transact securely.”
In a put up on a hacking discussion board — first noticed by researchers at Darkish Internet Informer — the group calling themselves ShinyHunters posted an advert saying they’d information together with
- 30 million individuals’s checking account particulars
- 6 million account numbers and balances
- 28 million bank card numbers
- HR info for employees
Santander has not commented on the accuracy of these claims.
ShinyHunters have beforehand offered information confirmed to have been stolen from US telecoms agency AT&T.
The gang can be promoting what it says is a large quantity of personal information from Ticketmaster.
The Australian authorities says it’s working with Ticketmaster to deal with the problem. The FBI has additionally supplied to help.
Some specialists have stated ShinyHunters’ claims ought to be handled with warning, as they might be a publicity stunt.
Nonetheless, researchers at cyber-security firm Hudson Rock declare that the Santander breach and the obvious Ticketmaster one are linked to a serious ongoing hack of a big cloud storage firm known as Snowflake.
Hudson Rock says it has spoken to the perpetrators of the alleged Snowflake hack – who declare that they gained entry to its inside system by stealing the login particulars of a member of Snowflake workers.
In a press release on Friday, Snowflake stated it was conscious of “probably unauthorised entry” to a “restricted quantity” of buyer accounts.
It stated it appeared hackers had used login info to entry a demo account owned by a former Snowflake worker.
That account “didn’t comprise delicate information,” the corporate stated.
“We have now no proof suggesting this exercise was attributable to any vulnerability, misconfiguration, or breach of Snowflake’s product,” it added.
