Hackers are attempting to sell sensitive information, including the bank and credit card numbers of millions of Santander customers, to the highest bidder.
ShinyHunters posted an advert on a hacker forum to obtain the data, which it says also includes staff HR details, with an asking price of $2m (£1.6m). It is the same organization that claims to have hacked Ticketmaster.
In the post describing the data it claims to have, the hacker collective mocks the bank, stating: “Santander is also welcome if they want to buy this data.”
Santander, which employs 200,000 people, including around 20,000 in the UK, confirmed it had been hacked a fortnight ago.
“Following an investigation, we have confirmed that certain information had been accessed relating to Santander clients Chile, Spain and Uruguay, as well as all current and former employees of the Santander group,” it said in a statement. statement issued on May 14.
“Customer data in the rest of Santander’s markets and businesses is not affected.”
At the time, Santander apologized for “the concern this will understandably cause” and said it was “proactively directly contacting affected customers and employees.”
“The database does not contain transactional data or credentials that allow transactions to be made on the accounts, including online banking details and passwords,” it said, adding that its banking systems were not affected so that customers could continue to “conduct online banking transactions.” safe way”. “
In a post on a hacking forum, first discovered by researchers at Dark Web Informer, ShinyHunters described the type and amount of data it claims to have in its hands. This covers the bank account data of 30 million people, 6 million account numbers and balances and 28 million credit card numbers.
Santander has not commented on the accuracy of the group’s claims.
It is claimed that ShinyHunters has managed to acquire the personal data of more than 500,000 Ticketmaster customers, although the company has not yet publicly confirmed the breach.
Authorities in Australia and the US are reportedly working with Ticketmaster to understand and respond to the incident, with hackers said to have gained access to the names, addresses, phone numbers and partial payment details of 560 million of Ticketmaster customers.
ShinyHunters is said to be demanding a ransom payment of around £400,000 from Ticketmaster to stop the data being sold on the dark web.