Hackers try to promote what they are saying is confidential info belonging to tens of millions of Santander employees and prospects.
They belong to the identical gang which this week claimed to have hacked Ticketmaster.
The financial institution – which employs 200,000 individuals worldwide, together with round 20,000 within the UK – has confirmed knowledge has been stolen.
Santander has apologised for what it says is “the priority this may understandably trigger” including it’s “proactively contacting affected prospects and staff immediately.”
“Following an investigation, we’ve got now confirmed that sure info regarding prospects of Santander Chile, Spain and Uruguay, in addition to all present and a few former Santander staff of the group had been accessed,” it stated in a assertion posted earlier this month.
“No transactional knowledge, nor any credentials that may permit transactions to happen on accounts are contained within the database, together with on-line banking particulars and passwords.”
It stated its banking methods had been unaffected so prospects might proceed to “transact securely.”
In a submit on a hacking discussion board — first noticed by researchers at Darkish Net Informer — the group calling themselves ShinyHunters posted an advert saying they’d knowledge together with
- 30 million individuals’s checking account particulars
- 6 million account numbers and balances
- 28 million bank card numbers
- HR info for employees
Santander has not commented on the accuracy of these claims.
ShinyHunters have beforehand offered knowledge confirmed to have been stolen from US telecoms agency AT&T.
The gang can be promoting what it says is a large quantity of personal knowledge from Ticketmaster.
The Australian authorities says it’s working with Ticketmaster to deal with the problem. The FBI has additionally supplied to help.
Some consultants have stated ShinyHunters’ claims must be handled with warning, as they could be a publicity stunt.
Nonetheless, researchers at cyber-security firm Hudson Rock declare that the Santander breach and the obvious Ticketmaster one are linked to a serious ongoing hack of a big cloud storage firm referred to as Snowflake.
Hudson Rock says it has spoken to the perpetrators of the alleged Snowflake hack – who declare that they gained entry to its inner system by stealing the login particulars of a member of Snowflake employees.
In an announcement on Friday, Snowflake stated it was conscious of “doubtlessly unauthorised entry” to a “restricted quantity” of buyer accounts.
It stated it appeared hackers had used login info to entry a demo account owned by a former Snowflake worker.
That account “didn’t comprise delicate knowledge,” the corporate stated.
“We have now no proof suggesting this exercise was attributable to any vulnerability, misconfiguration, or breach of Snowflake’s product,” it added.