Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

ECB Uncovers Data Breach in Bank Newsletter

Hackers had access for months to the contact information of hundreds of financial industry subscribers to a European Central Bank newsletter, the Frankfurt institution said Thursday.

“Unauthorised parties… breached the security measures protecting (the ECB’s) Banks’ Integrated Reporting Dictionary (BIRD) website,” the bank said in a statement.

Hackers had access for months to the contact information of hundreds of financial industry subscribers to a European Central Bank newsletter, the Frankfurt institution said Thursday.

“Unauthorised parties… breached the security measures protecting (the ECB’s) Banks’ Integrated Reporting Dictionary (BIRD) website,” the bank said in a statement.

“It was possible that the contact data of 481 subscribers to the BIRD newsletter may have been captured,” the ECB added, saying email addresses, names and positions were potentially leaked.

An ECB spokesman told AFP the hackers had been present in the BIRD system since at least December last year, which only “came to light during regular maintenance work”.

BIRD is a service coordinated by the central bank’s supervision arm, which oversees over 100 of the biggest and most important lenders in the 19 eurozone countries.

The website supports banks in gathering and organising information for submission to ECB supervisory teams.

Private lenders and eurozone national central banks work together to hash out the data and processing rules needed to meet regulatory reporting requirements, which have grown in complexity since the financial crisis and the ECB’s taking over supervision in 2014.

The ECB said that while the hackers did not have access to sensitive information like passwords, it was contacting people potentially affected to let them know.

Since the website was run on an external server separate from other ECB computers, “neither ECB internal systems nor market-sensitive data were affected,” the bank said.

Written By

AFP 2023

Click to comment

Expert Insights

Related Content

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Cybercrime

Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack

Cybercrime

Artificial intelligence is competing in another endeavor once limited to humans — creating propaganda and disinformation.

Cybercrime

CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.

Cybercrime

Chinese threat actor DragonSpark has been using the SparkRAT open source backdoor in attacks targeting East Asian organizations.