In a viral declare of knowledge robbery of HDFC financial institution customers, cybercriminals on a well-liked hacker discussion board wrote that they have got received non-public knowledge of round 6,00,000 consumers purportedly belonging to the India-based financial institution. Now, HDFC has categorically denied any information leak or breach in their techniques.
“We need to state that there’s no information leak at HDFC Bank and our techniques have now not been breached or accessed in any unauthorized method. We stay assured of our techniques,” HDFC replied to the data leak claims on Twitter. The bank further added that they treat the matter of customers’ data security with utmost seriousness, “we proceed to watch financial institution techniques and our ecosystems to make sure easiest requirements of knowledge safety and security”.
ALSO READ: HDFC Bank Q3 consequence: Profit up via 18.5% to 12,260 crore
The information robbery declare reported via more than a few media businesses allegedly mentioned the hacker with the alias ‘Kernelware’ posted 7.5 GB of extraordinarily delicate knowledge on consumer accounts to the hacker discussion board ‘Breached.vc’.
“Personal information of around 600,000 customers of the India-based HDFC Bank has allegedly been leaked by hackers on a popular cybercriminal forum,” Privacy Affairs reported sharing screengrab of the alleged hacker discussion board.
The leak comprises many stuff reminiscent of complete names (with heart title integrated), date of births, age, telephone numbers, non-public emails, everlasting emails, paintings emails, marriage standing, gender, place of abode deal with traces, everlasting deal with traces, zip codes, town, state, employment knowledge, utility knowledge, mortgage knowledge, transaction strategies, processing charges, financial institution names and branches, credit rankings, Experian rankings, broker names, transaction logs, transaction remarks, margin cash logs, common asset logs (price, fashion and so forth…). LOS IDS (LOS is a transaction device that the financial institution makes use of), loyalty card numbers, worker codes, and different miscellaneous issues, the publish learn, including that the oldest logs are from May 2022 with the latest ones being added as early as February. 2023.
Though HDFC financial institution says there’s no unauthorized get entry to to their techniques, its NBFC arm HDB Financial products and services has showed, Mint reported, that there was once an incident at “one of our service providers who processes some of our customer information.”
HDB Financial said, “We have taken rapid steps to protected the carrier supplier’s device to forestall any more unauthorized get entry to. In addition, we’re carrying out an intensive evaluate of the protection measures followed via the carrier supplier to forestall identical incidents from taking place one day.”
“We have also notified the regulator and CERT-IN and we are working with them to investigate this incident to the fullest,” it added.