In yet another shocking news, three Pakistani banks became victims of cyber-attack on November 13th, post BankIslami’s massive security breach last month.
According to the News.com.pk, data of over 150,000 plastic cards were put on sale on the dark web last week.
A Moscow-based anti-fraud firm the Group-IB detected an abnormal spike in Pakistani banksโ data offered for sale on the dark web card shop calledย โJokerstashโ after a new set of dumps was uploaded.
However, the latest dump did not include cards from BankIslami.
A blog post by Group-IB stated:
ย โThe banks affected by this breach included major Pakistani financial organizations such as, Habib Bank, MCB Bank Limited, Allied Bank Limited and many othersโ
However, Habib Bank was labeled as the most affected of all.
โHabib Bank was affected most by the breach: roughly 20% of cards (30,034) in the uploaded database was issued by this bank.โ
Group-IB said that the market value if the database collectively is aboutย $19.9 million.
โThe sale price for these card dumps rangesย from $17 to $160,โ
Head of Group-IB Cybercrime research unit,ย Dmitry Shestakov said card dumps are usually obtained by using skimming devices and through Trojans infecting workstations connected to point of sale terminals.
He stated:
โWhat is interesting about this particular leak is that the database that went on sale hadnโt been announced prior either in the news, on card shop or even on forums on the dark netโ
Last month, BankIslami underwent a major cyberattack as overseas hackers stole a whopping $6 million from debit cards issued by the bank.
The “abnormal transactions” wereย done by Pakistani debit cards outside the country’s borders.
State Bank of Pakistan (SBP) immediately took action by temporarilyย restricting the use of debit cards for those who are overseas.
Following the massive data-breach, as many as six leading Pakistani banksย had temporarily disabled debit cards for international ATM cash withdrawal due to security concerns.
In a text message sent to all users,ย the banks informed:
โAs a security precaution, your debit card has been temporarily disabled only for international ATM cash withdrawal.โ
Banks that had halted facility of debit cards in overseas markets include:
- Bank AL Habib
- Soneri Bank
- JS Bank
- UBL
- Faysal Bank
According to the Express Tribune, the security breach has also hit about nine banks compared to initial reports of only BankIslami being affected by the cyber attack.
The News International revealed that according to the Moscow-based anti-fraud firm, nine Pakistani banks, including Bank Islami, Habib Bank, JS Bank, Faysal Bank, Soneri Bank, Bank of Punjab, Bank Alfalah, Silkbank, and MCB Bank had witnessed abnormal transactions.
Stay tuned to Brandsynario for more updates.