Home Economy and Finance SBI data breach: Bank forgets to password secure its server, ends up compromising customer details

SBI data breach: Bank forgets to password secure its server, ends up compromising customer details

According to findings, this unsecured bank server was part of SBI Quick.

What can be called serious negligence on the part of India’s largest bank, the State Bank of India (SBI) forgot to secure its server hosting sensitive information in one of its Mumbai installations, allowing anyone to access financial information like bank balances and recent transactions of millions of its customers?

It is being anticipated that due to this blunder, information related to bank balance, bank account number and other key bits were leaked.

According to a report published by Techcrunch, a tip-off from an anonymous security researcher highlighted that “the bank had not protected the server with a password, allowing anyone who knew where to look to access the data on millions of customers’ information”.

- Advertisement - - Article resumes -

Though there is no surety as to how long this lapse persisted, it was rectified soon after Techcrunch approached the bank and informed about the glitch.

None of the SBI officials commented on this matter.

According to findings, this unsecured bank server was part of SBI Quick. This facility allows the bank customers to send a message or make a call to carry out basic banking functions.

According to the information provided on the bank’s website, the ‘SBI Quick – MISSED CALL BANKING is a free service from the Bank wherein you can get your Account Balance, Mini Statement and more just by giving a Missed Call or sending an SMS with pre-defined keywords to pre-defined mobile numbers from your registered mobile number.’

Meanwhile, what makes it more concerning is that because this particular app connects the customer’s phone number to his/her account, the data leaked from the bank’s server can be used by identity thieves or scammers to swindle money from bank’s accounts.

The report issued by Techcrunch noted that after gaining entry to the unsecured SBI server, the Techcrunch team was able to see “text messages going to customers in real-time, including their phone numbers, bank balances, and recent transactions The bank sent out close to three million text messages on Monday alone.” The server also allowed access to the archive of messages till December 2018, that were supposedly sent to SBI users.

Its database also contained the customer’s partial bank account number, confirmed Techcrunch.

The India-based security researcher, Karan Saini asserted that “the data could be potentially used to profile and target individuals that are known to have high account balances”.

Saini also confirmed that knowing a phone number “could be used to aid social engineering attacks- which is one of the most common attack vectors in the country with regard to financial fraud,” he said.

Recently, State Bank of India (SBI) had alleged misuse of Aadhaar data. Logins and biometrics of their Aadhaar operators have been misused to generate unauthorised Aadhaar cards, bank officials informed UIDAI.

However, the Unique Identification Authority of India (UIDAI), the authority that established the database, had rubbished SBI’s claims.

SBI has more than 500 million customers across the world, with 740 million accounts.

Share This Post With Your Friends & Fans:
We need your support to survive in the media industry. Please consider paying us for the content we produce:

To know more about these payments, please click here.


Most read articles recently

Sri Lanka attacks

Sri Lankan millionaire’s family was an ISIS cell: Suicide bombers shatter shameless excuses peddled by ‘liberals’ to justify Islamic terrorism

All over the world, the terrorist attacks by radical Islamists is immediately served with long and extensive excuses about how social ills, discrimination, poverty, hardships, and atrocities lead to terrorism.

Meet the Photoshop artist whose work Akshay Kumar showed to Prime Minister Modi

While mostly people have been appreciative of his artwork, suspended bureaucrat Ashish Joshi has threatened him with police complaint about his cleverly Photoshopped image
If you believe Google trends, this election is a runaway win for Modi

If you believe Google trends, this election is a runaway win for Modi

It’s fairly clear: Congress hasn’t managed to get its message out.  If you ask Google Trends, this election is over. The writing is on the wall. PM Narendra Modi is all set to win

Propagandist Dhruv Rathee mocks Manohar Parrikar’s death to score political brownie points

Earlier, too, Rathee was caught speaking the same language as that of Pulwama attack terrorist by mocking 'cow urine drinkers'
The Quint lies, twists and tortures CVoter data to make it say that the Modi wave is over. Here is what the data actually says

The Quint lies, twists and tortures CVoter data to make it say that the Modi wave is over. Here is what the data actually says

Leftist portal The Quint published an article headlined "Modi wave over? Why pollsters are scaling down projections for BJP" based on CVoter data, where the data itself was twisted, selectively quoted and misrepresented

Two AAP MLAs lunged towards Kejriwal and one punched him such that his glasses fell off, claims Kapil Mishra

AAP MLAs reportedly beat up Kejriwal so much that he has injured his knees and could not walk properly

Mamata Banerjee sends kurtas and sweets for him says PM Modi in a freewheeling chat with filmstar Akshay Kumar

Prime Minister Modi's informal interaction with film star Akshay Kumar leads to a meltdown of 'journalists'

After getting Bangladeshi actors to campaign, Mamata’s TMC caught running ads in Bangladesh appealing for votes

Mamata's TMC is running as many as 13 ads on Facebook, appealing people to vote for TMC in the ongoing elections
Tehseen Poonawalla mocks people for using chalks to clean their shoes

Robert Vadra’s relative mocks Modi’s memories, exposes why Congress could never understand needs of India’s poor

Tehseen Poonawalla mocked PM and others who claimed to have used chalk to whiten their dirty canvas shoes and called them dumb.

Coward, gutless, visionless, losers: ‘Neutral’ media has a meltdown after Priyanka Gandhi Vadra is not fielded as Congress candidate against PM Modi

The media first put its eggs in the Rahul Gandhi basket, and when that appeared to have holes big enough to fit chickens, they decided to pin their hopes on Priyanka Gandhi Vadra.

Latest articles

Connect with us

157,454FansLike
130,575FollowersFollow
54,970SubscribersSubscribe

Don't miss these

Share This Post With Your Friends & Fans: