05-09-2024, 06:35 AM
News Hacker Duo Allegedly Strikes HSBC, Barclays in Cyberattacks
<p><img width="1000" height="625" src="https://thecyberexpress.com/wp-content/uploads/Barclays-and-HSBC-Bank-data-breach-e1715176562997.webp" class="attachment-post-thumbnail size-post-thumbnail wp-post-image" alt="Barclays and HSBC Bank data breach" decoding="async" srcset="https://thecyberexpress.com/wp-content/uploads/Barclays-and-HSBC-Bank-data-breach-e1715176562997.webp 1000w, https://thecyberexpress.com/wp-content/u...0x188.webp 300w, https://thecyberexpress.com/wp-content/u...8x480.webp 768w, https://thecyberexpress.com/wp-content/u...0x375.webp 600w, https://thecyberexpress.com/wp-content/u...50x94.webp 150w, https://thecyberexpress.com/wp-content/u...0x469.webp 750w" sizes="(max-width: 1000px) 100vw, 1000px" /></p><span style="font-weight: 400;">Hackers IntelBroker and Sanggiero have claimed a data breach allegedly impacting HSBC Bank and Barclays Bank. The HSBC Bank data breach, along with the breach at Barclays reportedly occurred in April 2024, involving a security incident through a third-party contractor, ultimately leading to the leak of sensitive data. </span>
<span style="font-weight: 400;">The compromised data, which was being offered for sale on Breachforums, allegedly includes a wide array of files such as database files, certificate files, source code, SQL files, JSON configuration files, and compiled JAR files. Preliminary analysis suggests that the <a class="wpil_keyword_link" title="data" href="https://thecyberexpress.com/what-is-data/" target="_blank" rel="noopener" data-wpil-keyword-link="linked" data-wpil-monitor-id="3500">data</a> may have been sourced from the services provided by Baton Systems Inc., a post-trade processing platform, potentially impacting both HSBC Bank and Barclays Bank.</span>
<span style="font-weight: 400;">However, Baton Systems has not shared any update on this alleged attack or any connection with the sample data provided by the threat actor.</span>
<h3><span style="font-weight: 400;">Hacker Duo Claims Barclays and HSBC Bank Data Breach</span></h3>
<span style="font-weight: 400;">Barclays Bank PLC and The Hong Kong and Shanghai Banking Corporation Limited (HSBC) are the primary organizations reportedly affected by this <a href="https://thecyberexpress.com/api-security-and-artificial-intelligence/" target="_blank" rel="noopener" data-wpil-monitor-id="3501">breach</a>. With operations spanning across the United Kingdom, United States, and regions including Europe and North America, the threat actor threatens the <a href="https://thecyberexpress.com/android-banking-trojan-targeting-germans/" target="_blank" rel="noopener">banking systems</a> and probably targets customers' data, however, there has been no evidence of such data getting leaked. </span>
[caption id="attachment_67347" align="alignnone" width="2084"]<img class="wp-image-67347 size-full" src="https://thecyberexpress.com/wp-content/uploads/IntelBroker-HSBC-Barclays_leak1715156571169.webp" alt="Barclays and HSBC Bank data breach" width="2084" height="626" /> Source: <a class="wpil_keyword_link" title="Dark Web" href="https://thecyberexpress.com/what-is-the-dark-web/" target="_blank" rel="noopener" data-wpil-keyword-link="linked" data-wpil-monitor-id="3499">Dark Web</a>[/caption]
<span style="font-weight: 400;">In a post on <a href="https://en.wikipedia.org/wiki/BreachForums" target="_blank" rel="nofollow noopener">Breachforums</a>, one of the threat actors, <a href="https://thecyberexpress.com/threat-actors/intelbroker-hacker/" target="_blank" rel="noopener">IntelBroker</a>, shared details of the Barclays and HSBC Bank data breach, offering the compromised data for download. The post, dated May 8, 2024, outlined the nature of the breach and the types of data compromised, including database files, certificate files, <a href="https://thecyberexpress.com/hackers-android-stealer-source-code-on-sale/" target="_blank" rel="noopener" data-wpil-monitor-id="3502">source code</a>, and more.</span>
<span style="font-weight: 400;"> The post also provided a sample of the leaked data, revealing a mixture of CSV data representing financial transactions across different systems or entities.</span>
<blockquote>While talking about the <a href="https://thecyberexpress.com/vice-society-posts-stolen-data-after-lausd-refuses-ransom-demand/" target="_blank" rel="noopener" data-wpil-monitor-id="3503">stolen data</a>, IntelBroker denoted that he is "uploading the HSBC & Barclays data breach for you to download. Thanks for reading and enjoy! In April 2024, HSBC & Barclays suffered a data breach when a direct contractor of the two banks was breached. Breached by @IntelBroker & @Sanggiero".</blockquote>
<h3><span style="font-weight: 400;">A Closer Look at the Sample Data </span></h3>
<span style="font-weight: 400;">A closer look at the sample data reveals three distinct datasets, each containing transaction records with detailed information about financial activities. These records encompass a range of information, from transaction IDs and timestamps to descriptions and account numbers involved. The datasets provide a comprehensive view of various transactions, offering valuable insights for financial analysis and tracking.</span>
<span style="font-weight: 400;"><a href="https://thecyberexpress.com/" target="_blank" rel="noopener">The Cyber Express</a> has reached out to both the banks to learn more about these alleged data breaches. HSBC Bank has denied these allegations about the breach, stating, "We are aware of these reports and confirm HSBC has not experienced a <a class="wpil_keyword_link" href="https://thecyberexpress.com/what-is-cybersecurity/" target="_blank" rel="noopener" title="cybersecurity" data-wpil-keyword-link="linked" data-wpil-monitor-id="3505">cybersecurity</a> incident and no HSBC data has been compromised.”</span>
However, at the time of writing this, no official statement or response has been shared by Barclays, leaving the claims of the data breach related to Barclays stand unverified.
<span style="font-weight: 400;">Moreover, the two hackers in question, IntelBroker and Sanggiero, have claimed similar attacks in the past, targeting various <a href="https://thecyberexpress.com/ensuring-data-integrity/" target="_blank" rel="noopener" data-wpil-monitor-id="3504">global</a> organizations. In an exclusive interview with <a href="https://thecyberexpress.com/intelbroker-interview-exclusive/" target="_blank" rel="noopener">The Cyber Express</a>, one of the hackers, IntelBroker shed light on their hacking activities and the motivations behind their operations. </span><span style="font-weight: 400;">IntelBroker had also praised Sanggiero from BreachForums for “his exceptional intellect and understated contributions to the field are deserving of far greater recognition and respect.”</span>
<span style="color: #ff0000;"><i><span style="font-weight: 400;">Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. <a style="color: #ff0000;" href="https://thecyberexpress.com/" target="_blank" rel="noopener">The Cyber Express</a> assumes no liability for the accuracy or consequences of using this information.</span></i></span>
https://thecyberexpress.com/hsbc-bank-da...-barclays/
<p><img width="1000" height="625" src="https://thecyberexpress.com/wp-content/uploads/Barclays-and-HSBC-Bank-data-breach-e1715176562997.webp" class="attachment-post-thumbnail size-post-thumbnail wp-post-image" alt="Barclays and HSBC Bank data breach" decoding="async" srcset="https://thecyberexpress.com/wp-content/uploads/Barclays-and-HSBC-Bank-data-breach-e1715176562997.webp 1000w, https://thecyberexpress.com/wp-content/u...0x188.webp 300w, https://thecyberexpress.com/wp-content/u...8x480.webp 768w, https://thecyberexpress.com/wp-content/u...0x375.webp 600w, https://thecyberexpress.com/wp-content/u...50x94.webp 150w, https://thecyberexpress.com/wp-content/u...0x469.webp 750w" sizes="(max-width: 1000px) 100vw, 1000px" /></p><span style="font-weight: 400;">Hackers IntelBroker and Sanggiero have claimed a data breach allegedly impacting HSBC Bank and Barclays Bank. The HSBC Bank data breach, along with the breach at Barclays reportedly occurred in April 2024, involving a security incident through a third-party contractor, ultimately leading to the leak of sensitive data. </span>
<span style="font-weight: 400;">The compromised data, which was being offered for sale on Breachforums, allegedly includes a wide array of files such as database files, certificate files, source code, SQL files, JSON configuration files, and compiled JAR files. Preliminary analysis suggests that the <a class="wpil_keyword_link" title="data" href="https://thecyberexpress.com/what-is-data/" target="_blank" rel="noopener" data-wpil-keyword-link="linked" data-wpil-monitor-id="3500">data</a> may have been sourced from the services provided by Baton Systems Inc., a post-trade processing platform, potentially impacting both HSBC Bank and Barclays Bank.</span>
<span style="font-weight: 400;">However, Baton Systems has not shared any update on this alleged attack or any connection with the sample data provided by the threat actor.</span>
<h3><span style="font-weight: 400;">Hacker Duo Claims Barclays and HSBC Bank Data Breach</span></h3>
<span style="font-weight: 400;">Barclays Bank PLC and The Hong Kong and Shanghai Banking Corporation Limited (HSBC) are the primary organizations reportedly affected by this <a href="https://thecyberexpress.com/api-security-and-artificial-intelligence/" target="_blank" rel="noopener" data-wpil-monitor-id="3501">breach</a>. With operations spanning across the United Kingdom, United States, and regions including Europe and North America, the threat actor threatens the <a href="https://thecyberexpress.com/android-banking-trojan-targeting-germans/" target="_blank" rel="noopener">banking systems</a> and probably targets customers' data, however, there has been no evidence of such data getting leaked. </span>
[caption id="attachment_67347" align="alignnone" width="2084"]<img class="wp-image-67347 size-full" src="https://thecyberexpress.com/wp-content/uploads/IntelBroker-HSBC-Barclays_leak1715156571169.webp" alt="Barclays and HSBC Bank data breach" width="2084" height="626" /> Source: <a class="wpil_keyword_link" title="Dark Web" href="https://thecyberexpress.com/what-is-the-dark-web/" target="_blank" rel="noopener" data-wpil-keyword-link="linked" data-wpil-monitor-id="3499">Dark Web</a>[/caption]
<span style="font-weight: 400;">In a post on <a href="https://en.wikipedia.org/wiki/BreachForums" target="_blank" rel="nofollow noopener">Breachforums</a>, one of the threat actors, <a href="https://thecyberexpress.com/threat-actors/intelbroker-hacker/" target="_blank" rel="noopener">IntelBroker</a>, shared details of the Barclays and HSBC Bank data breach, offering the compromised data for download. The post, dated May 8, 2024, outlined the nature of the breach and the types of data compromised, including database files, certificate files, <a href="https://thecyberexpress.com/hackers-android-stealer-source-code-on-sale/" target="_blank" rel="noopener" data-wpil-monitor-id="3502">source code</a>, and more.</span>
<span style="font-weight: 400;"> The post also provided a sample of the leaked data, revealing a mixture of CSV data representing financial transactions across different systems or entities.</span>
<blockquote>While talking about the <a href="https://thecyberexpress.com/vice-society-posts-stolen-data-after-lausd-refuses-ransom-demand/" target="_blank" rel="noopener" data-wpil-monitor-id="3503">stolen data</a>, IntelBroker denoted that he is "uploading the HSBC & Barclays data breach for you to download. Thanks for reading and enjoy! In April 2024, HSBC & Barclays suffered a data breach when a direct contractor of the two banks was breached. Breached by @IntelBroker & @Sanggiero".</blockquote>
<h3><span style="font-weight: 400;">A Closer Look at the Sample Data </span></h3>
<span style="font-weight: 400;">A closer look at the sample data reveals three distinct datasets, each containing transaction records with detailed information about financial activities. These records encompass a range of information, from transaction IDs and timestamps to descriptions and account numbers involved. The datasets provide a comprehensive view of various transactions, offering valuable insights for financial analysis and tracking.</span>
<span style="font-weight: 400;"><a href="https://thecyberexpress.com/" target="_blank" rel="noopener">The Cyber Express</a> has reached out to both the banks to learn more about these alleged data breaches. HSBC Bank has denied these allegations about the breach, stating, "We are aware of these reports and confirm HSBC has not experienced a <a class="wpil_keyword_link" href="https://thecyberexpress.com/what-is-cybersecurity/" target="_blank" rel="noopener" title="cybersecurity" data-wpil-keyword-link="linked" data-wpil-monitor-id="3505">cybersecurity</a> incident and no HSBC data has been compromised.”</span>
However, at the time of writing this, no official statement or response has been shared by Barclays, leaving the claims of the data breach related to Barclays stand unverified.
<span style="font-weight: 400;">Moreover, the two hackers in question, IntelBroker and Sanggiero, have claimed similar attacks in the past, targeting various <a href="https://thecyberexpress.com/ensuring-data-integrity/" target="_blank" rel="noopener" data-wpil-monitor-id="3504">global</a> organizations. In an exclusive interview with <a href="https://thecyberexpress.com/intelbroker-interview-exclusive/" target="_blank" rel="noopener">The Cyber Express</a>, one of the hackers, IntelBroker shed light on their hacking activities and the motivations behind their operations. </span><span style="font-weight: 400;">IntelBroker had also praised Sanggiero from BreachForums for “his exceptional intellect and understated contributions to the field are deserving of far greater recognition and respect.”</span>
<span style="color: #ff0000;"><i><span style="font-weight: 400;">Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. <a style="color: #ff0000;" href="https://thecyberexpress.com/" target="_blank" rel="noopener">The Cyber Express</a> assumes no liability for the accuracy or consequences of using this information.</span></i></span>
https://thecyberexpress.com/hsbc-bank-da...-barclays/