ThreatSec, a cyber threat organization, allegedly hacked and successfully breached the State Bank of India. The hacking group claimed to have access to employees’ data and other sensitive information from the bank.
ThreatSec Makes Bold Claim
Earlier today, ThreatSec posted on its dark web page, announcing its successful breach of the State Bank of India database utilizing the vulnerabilities found in its system’s back doors.
Furthermore, It proclaimed that it now possessed unlimited access to employees’ account numbers, photo identifications, work IDs, IPs, phone numbers, Addresses, names, and other sensitive data.
Based on the posted information on the dark web, the hackers now possess a stunning number of over twelve (12) thousand records from all employees of the State Bank of India.
Additionally, threat actors can exploit individuals on the lists due to the detailed data they allegedly have access to. This hack reminds us of the Turk Hack Team’s aggressions, which launched DDoS attacks on the Swiss National Bank and the Central Bank of Malta.
As of this moment, the State Bank of India has not issued any comment on the alleged system’s breach and there is no known verification of this aggression as indicated on the dark web by the cyber threat organization.
Indian Banks Reported 248 Data Breaches In Last Four Years, Says Government
India’s banks reported 248 successful data breaches by threat actors between June 2018 and March 2022, the government relayed this information to the Parliament on August 2.
Notably, most of these breaches involve card details leaks and theft of business and non-business information, Union Minister of State for Finance Bhagwat Karad explained.
However, the minister says, public Banks recorded 41 breaches, while private banks and foreign banks recorded 205 and 2 respectively.
Replying to a question on data security in banking and insurance sectors, Karad said the Reserve Bank of India (RBI) has informed the Centre that it has issued guidelines on Cyber Security Framework for Scheduled Commercial Banks (SCBs), whereby banks are required to implement cybersecurity and IT (information technology) controls, among other things, for prevention of data leakage from its systems.