DayFR Euro

The Banque de denies a data leak, but confirms an attack

Updated November 26, 2024

The Banque de affirms that its data was not stolen by hackers. Contacted by our colleagues from Ouest-France, the bank assures that it “there was no attack on the secure information system” having made it possible to exfiltrate information.

On the other hand, the central bank recorded “occasional external access to an HR (human resources) extranet”. To block access to cybercriminals, this extranet was promptly closed. During the intrusion, “no sensitive personal or financial data has been compromised”. On Telegram, however, hackers continue to highlight the stolen database, a sample of which is available.

———————————————————————-

The Banque de France found itself in the crosshairs of cybercriminals from Near2tlg. French pirates say they got their hands on internal documents belonging to the central bank. This data was put up for sale on BreachForums, a criminal forum that has become essential for lovers of compromised information, and on Telegram.

In the announcement, consulted by 01Net, the hackers claim to have stolen employee files (the identitiesTHE positionsTHE wagesTHE addresses…) and “sensitive customer information” (identities, bank accounts and transaction histories). Hackers also sell “confidential internal documents”such as strategies, financial reports, and sensitive communications. The directory also includes Outlook accesses.

Also read: This hacker tactic explains the explosion of cyberattacks in France

Data on sale for $10,000

This mountain of data was put up for sale for $10,000. As researcher Clément Domingo explains on “without much explanation” from $50,000 to $10,000. To lure buyers, the collective put online a sample of data. We find there “internal documents on job descriptions and other administrative documents”relates Clément Domingo.

Consulted by 01Net, the data takes the form of an internal presentation of around forty pages relating the ambitions of the Banque de France for 2020. A priori, this information is not particularly sensitive.

In the eyes of the expert, it is not impossible that it is a « coup de bluff »although the previous assertions of Near2tlg have been systematically confirmed by victims. So far, the hackers have not shared false information. However, we will take the announcement with a grain of salt while awaiting a press release from the Bank of France. Contacted by us, the central bank has not yet been able to confirm or deny the existence of data theft.

Anyway, the list of victims of the collective Near2tlg keeps getting longer. Since its recent appearance, the group has stolen data from several major entities, including SFR, Le Point and Direct Assurance, and the medical records of 750,000 French people through a hospital in the region.

On Telegram and on BreachForums, the gang also claims the hack of “Osiris Production”, which is presented as “ a platform used by French public authorities to manage compensation claims in the event of work accidents and occupational illnesses ».

???? To not miss any news from 01net, follow us on Google News and WhatsApp.

-

Related News :