Netbanking Credentials for Multiple Indonesian and Saudi Banks Leaked by Threat Actor

Attack Description :

In a concerning development highlighting the persistent threat to online security, a threat actor identified as “albela” has recently leaked a trove of netbanking credentials for several banks, including major Indonesian institutions and a Saudi-based bank. The leaked data reportedly encompasses both corporate and retail netbanking credentials, raising alarm bells about the security of sensitive financial information. 

Credentials Target Multiple Banks

Albela, operating on the Leakbase forum, claimed responsibility for this breach, which encompasses several prominent banks. The affected Indonesian banks include PT Bank Mandiri Tbk, Bank Negara Indonesia, PT Bank Central Asia Tbk, and PT Bank Rakyat Indonesia (Persero) Tbk. Additionally, Saudi-based Al Rajhi Bank was also allegedly impacted.

Extent of the Leak

The leaked set of credentials is said to include both corporate and retail netbanking login details. The compromised data extends to administrative credentials, amplifying the potential impact of this breach on the affected banks’ operations and security.

Risk to Financial Data

The unauthorized disclosure of netbanking credentials poses a significant risk to both banks and their customers. Access to these credentials could allow malicious actors to perform unauthorized transactions, compromise accounts, or gain access to sensitive financial information.

Response and Investigation

In response to these alarming developments, affected banks and financial institutions are likely to initiate immediate investigations to verify the authenticity of the claims and assess the extent of the breach. Collaboration with cybersecurity experts and relevant authorities will be crucial in responding effectively to these incidents and safeguarding customers’ financial assets.

Cybersecurity Vigilance

This incident serves as a stark reminder of the ongoing need for robust cybersecurity measures, not only within financial institutions but also among individual users. Banks are urged to bolster their security protocols, conduct thorough security audits, and enhance customer awareness of cybersecurity best practices.

 Take Away: 

Customers of these banks are advised to take immediate action to secure their accounts, including changing passwords and monitoring their financial transactions for any suspicious activities.

CyberSoochna will continue to monitor this situation and provide updates as more information becomes available.

Disclaimer : The information provided herein is on “as is” basis, without warranty of any kind.