Edition "Businessman"Reported that Sberbank had another data leak. This time, a database appeared on the network containing personal data of Sberbank customers, but they also offer dump buyers the recording of the user's last conversation with the bank's call center.
According to journalists, the database appeared on sale on the network black market on October 13 of this year. One of the sellers claims to have a database of bank customers with loans or credit cards. The dump contains a million lines with full data (passport, registration, residential addresses, phone numbers, bills, the amount of the balance or debt) collected from 2015 until recently (in the three weeks of October, the database was replenished by 19,283 lines).
Information is sold in any volume, that is, the buyer can even name the criteria he is interested in, according to which a sample will be generated, for example, by region, amount on the map or the size of the debt. But the most unusual is the unloading at the last customer call to the bank. The seller offers to provide a record of this conversation, if that is the desire of the buyer.
Journalists of the publication contacted the seller of the dump and studied the trial fragment of the database, which contained data on customers who had reached the delay on loans and credit cards. Judging by the “TB” column (territorial bank), the data from ten territorial banks turned out to be unloaded (Sberbank had 11 of them in total). Some customers have several lines if they have several active loans. Judging by the columns "Date of delay due" and "Number of days due", the data was uploaded on September 25. Audio recordings are unloaded, according to the seller, “from the workplace,” that is, in the daytime. The seller himself admitted that he acts as a reseller and sells one line for 30 rubles. According to him, the base is a list of debtors who have delayed payments on loans.
The press service of Sberbank denies a new data leak. “Sberbank and its subsidiaries did not have such personal data leaks,” the bank said.
Kommersant quotes Ashot Hovhannisyan, the founder and technical director of DeviceLock, who believes that a dump, however, can be real:
“Given that the seller reported the possibility of receiving audio recordings of conversations, the data may have leaked from an external call center that provides work with debtors,” suggested Hovhannisyan.
Also, a trial fragment of the base was acquired and studied by journalists "Izvestia", Making sure of its authenticity using the Sberbank Online application, where when transferring by phone number you can see the first name, middle name and first letter of the recipient's last name. According to the publication, the dump contains information from 11,500 citizens who took a loan from Sberbank.
Let me remind you that in early October it became known about another leak of customer data from Sberbank. According to Kommersant’s information, the bank’s customers ’data is being sold on the black market, including information on 60 million cards (both valid and closed, since the bank currently has about 18 million active cards). The bank acknowledged the leak, but stated that it affected only 5,000 people.
Then, an internal investigation conducted by Sberbank’s security service and law enforcement authorities revealed an employee born in 1991, the head of a sector in one of the bank’s business units, who had access to databases by virtue of official duties and who attempted to steal client information for personal gain.