Hackers Claim Santander Breach, Data for Sale on Dark Web

A threat actor has claimed responsibility for a breach of Banco Santander’s internal network, alleging the theft of 10,000 confidential records. The actor is now purportedly offering the stolen data for sale on the dark web.

 

Banco Santander S.A., doing business as Santander Group, is considered as one of the largest financial organisations globally with presence in North and South America and continental Asia apart from its European banking operations.

 

Recently, a threat actor operating under the alias “BreachParty” claimed to have infiltrated Banco Santander’s internal network, listing the bank as a victim on its data leak site. The threat actor said it is in possession of 10,000 confidential records and has offered to sell it on the dark web.

 

 

 

According to BreachParty, the stolen data includes names, IDs, dates of birth, phone numbers, and IBANs of Banco Santander’s Spanish customers.

 

Banco Santander has not yet issued a statement regarding the threat actor’s claims.

 

Last year, the bank suffered another significant data security incident after a threat actor gained access to a Santander database hosted by a third-party provider.

 

“Following an investigation, we have now confirmed that certain information relating to customers of Santander Chile, Spain and Uruguay, as well as all current and some former Santander employees of the group had been accessed,” the bank said.

 

Banco Santander added that the compromised database did not contain any transactional data, or any credentials that would allow unauthorised transactions to take place on accounts. This includes online banking details and account passwords.

 

The ShinyHunters hacker group claimed responsibility for the cyber attack on Santander and listed it as a victim on its data leak site. The group claimed that the stolen data contains “30 million customers, 6 million account numbers and balances, 28 million credit card numbers, HR employee lists, and more.”