Hacker Sells Apparent Santander Bank Customer Data
A hacker is selling the purported data of 30 million customers of Spanish multinational bank Santander for $2 million on a criminal online forum the FBI recently attempted to shut down.
A listing on the BreachForums data leak marketplace by administrator ShinyHunters says the data set contains 6 million account numbers and balances and 28 million credit card numbers belonging to Santander customers located in Chile, Spain and Uruguay as well as internal employee data. The bank disclosed on May 14 that it detected "unauthorized access to a Santander database hosted by a third-party provider." The company did not immediately respond to a request for comment.
The bank's most recent quarterly report lists considerably fewer than 30 million clients in the three affected countries - just 4 million in Chile, 15 million in Spain and half a million in Uruguay.* "No transactional data, nor any credentials that would allow transactions to take place on accounts are contained in the database, including online banking details and passwords. The bank's operations and systems are not affected, so customers can continue to transact securely," the bank said.