Finance

Bank Leaves Database Unsecured without Password

29 January - 4 February 2019

India's largest bank, State Bank of India (SBI), has leaked the financial records belonging to millions of customers after failing to secure a Mongo database with a password.
Cyber_News_Finance
India's largest bank, State Bank of India (SBI), has leaked the financial records belonging to millions of customers after failing to secure a Mongo database with a password. The server, which hosted a text message system known as SBI Quick, exposes customers' text messages sent to the system, phone number, bank balance, partial bank account number, and recent transactions. The leaked information can be used in social engineering attacks, which may result in fraudulent activities and identity theft. SBI has denied the allegations, claiming that the data of its customers are safe, and investigation is ongoing to ascertain the full extent of the incident.

References:
[1] India’s Largest Bank SBI Leaked Account Data on Millions of Customers
 
 
 
 
 

More Weekly Cyber Newsanalysis and insights

Ensign Consulting

Enhancing your security posture, developing your cyber strategy, and designing your incident response plans.​

Ensign Systems Integration

Architecting and implementing cybersecurity solutions that bolster defences

Ensign Managed Security Services

Managing your security operations for advanced threat detection, continuous monitoring, and triage services

Ensign Labs

Performing deep research to analyse vulnerabilities, deploy advanced threat hunting and provide cyber threat intelligence