At the end of last week, Kommersant reported that Sberbank's customer data is being sold on the black market, including information on 60 million cards (both active and closed, since the bank currently has about 18 million active cards). According to the publication, the leak could have occurred at the end of August this year and is one of the largest in the Russian banking sector.
Then representatives of the bank acknowledged the leak, but said that only 200 people were affected. It was reported that the leak could not have occurred through external hacking of systems, since all client databases are completely isolated from the external network. The Sberbank Security Service and law enforcement agencies began an internal investigation of what happened, and the main working version was the commission of intentional criminal acts by one of the bank's employees.
On the completion of the internal investigation, representatives of Sberbank reported already last weekend. The audit revealed an employee born in 1991, the head of a sector in one of the bank’s business divisions, who had access to databases by virtue of his job responsibilities and who attempted to steal client information for personal gain.
“The necessary evidence was gathered and documented to prove the crime. Yesterday, the employee confessed, and law enforcement officials are currently carrying out procedural actions with him. There is no risk of client data leakage (in addition to credit card data of 200 bank customers, as was announced in the bank press release on October 3, 2019), ”representatives of the bank said.
The head of Sberbank German Gref apologized to all the victims and promised to take the necessary measures:
“We have made serious conclusions and radically strengthen access control to the work of our systems for bank employees in order to minimize the impact of the human factor. I want to thank all our customers for their faith in us and their trust, as well as the employees of the Bank’s Security Service, our Bison subsidiary and law enforcement agencies for their clear and well-coordinated work, which allowed solving the crime within a few hours. ”
On the TV channel "Russia 1" Gref declaredthat the data stolen by the employee was not published in the public domain, and now all compromised cards have already been reissued and customers have nothing to worry about.