Heimdal
Home > Cybersecurity News

Deutsche Bank, ING, and Postbank Customers` Data Exposed in Breach

The Banks Shared the Same Third-Party Vendor Who Was Victim of MOVEit Hacks.

Last updated on July 12, 2023

article featured image

Contents:

Deutsche Bank, ING Bank, Postbank, and Comdirect recently announced they suffered customer data leaks. Reportedly, the four European giant banks were using the same third-party business vendor, who fell victim to a MOVEit data-theft attack.

The Attack Revealed

On July 3rd, Deutsche Bank and Postbank announced their customers about the data leak. The notice revealed that the threat actors succeeded to exploit a vulnerability in the software of a third-party vendor they did not name.

According to Deutsche Bank, the incident didn`t affect their systems. So, it appears that hackers did not have direct access to the accounts.

Only customers who used the account switching service of either Deutsche or Postbank in 2016 through 2018, and 2020, are said to be affected by the leak.

Source

However, none of the banks revealed how many customers did the data breach expose.

Further on, according to German media, the data breach also affected ING, Commerzbank, and Comdirect banks. While the other banks did not reveal the third-party vendor`s identity, Commerzbank stated that the breached service provider was Majorel. Majorel also announced they were the target of a cyberattack that exploited a vulnerability in the MOVEit file transfer system.

The Exposed Data and Further Risks

Deutsche Bank notified its customers that a third-party vendor exposed some of their personal data due to a cyberattack. Threat actors got access to the complete name and the International Banking Account Number (IBAN). This data enables a malicious actor to make unauthorized direct debits from the compromised account.

Additionally, specialists warn that hackers might try to gain other personal data and use it in phishing attacks and password theft attempts. The impacted banks urged customers to closely monitor their transactions and account statements and swiftly announce the bank in case they detect any unauthorized transactions

If you liked this article, follow us on LinkedIn, Twitter, Facebook, and Youtube, for more cybersecurity news and topics.

 

Author Profile

Livia Gyongyoși

Communications and PR Officer

Livia Gyongyoși is a Communications and PR Officer within Heimdal®, passionate about cybersecurity. Always interested in being up to date with the latest news regarding this domain, Livia's goal is to keep others informed about best practices and solutions that help avoid cyberattacks.

Related Articles

Top Data Breaches in 2023: Alarming Incidents Impacting CompaniesPatching Required! New Critical SQL Injection Vulnerabilities Found in MOVEitWhat Is Data Leakage?What Is a Data Breach and How to Prevent ItPhishing attacks explained: How it works, Types, Prevention and Statistics

Leave a Reply

Your email address will not be published. Required fields are marked *

CHECK OUR SUITE OF 11 CYBERSECURITY SOLUTIONS

SEE MORE
linkedin
youtube
facebook
x

resources

company

newsletter

© 2024 Heimdal®

Vat No. 35802495, Vester Farimagsgade 1, 2 Sal, 1606 København V