World’s largest banks’ preferred solution hacked

Due to a password reuse 🤯 More details in the article.

Though the exact date is still unclear, original hacked files point on April 19, 2022. It is at this date the files from have been extracted.

Digital Banking Report is “a publication that is recognized throughout the financial services industry, providing an important source of unbiased guidance for bank and credit union product managers, marketers, and C-level executives looking to improve their digital, online and mobile products and services.” – states company’s LinkedIn profile.

This company is serving such huge clients, as Accenture, Deloitte, McKinsey&Company, EY, Apple, Cisco, PwC, Adobe, Oracle, IBM. It also works closely with the biggest world banks: JPMorgan Chase&Co, Wells Fargo, CitiBank, Credit Suisse, Capital One, US Bank, BNP Paribas, Standard Bank, RBC Royal Bank, Scotiabank and others.

Digital Banking Report is proud of its clients, stating “Banking and credit union executives and solution providers at more than 300 companies worldwide use our insights to keep pace with digital transformation in financial services.”

Screenshot from showing logos of famous clients.

Details of the leak

Original archive associated with this data leak has been shared in a post on a popular underground hacking forum. As the hacker explains, he has extracted data himself, it has been assumably easy due to the fact that cPanel (Admin panel) has been using the previously leaked password, so hacker literally simply logged in: no brute force, no phishing, no state-of-the-art malware. As simple as that.

The hacker has been able to access such sensitive information of Digital Banking Report clients as: email addresses, usernames and passwords.

While the reason of this data leak is negligence, hacker explains that the newest data has been moved to another server and leaked information, that we currently possess is dated as early as of 2018. In other words, no “fresh” data has been leaked.

Kaduu Team strongly believes that Internet users should not re-use their passwords in any way.

Stay up to date with exposed information online. Kaduu with its cyber threat intelligence service offers an affordable insight into the darknet, social media and deep web.

Comments are closed.