Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Incident Response

Qatar National Bank Says Systems ‘Fully Secure’ After Cyber Attack

Qatar National Bank Building

Qatar National Bank said that its systems are “fully secure” following a hacker attack that resulted in a large number of files allegedly stolen from the financial institution’s systems being leaked online.

Qatar National Bank Building

Qatar National Bank said that its systems are “fully secure” following a hacker attack that resulted in a large number of files allegedly stolen from the financial institution’s systems being leaked online.

In a statement published to its website on Sunday, the bank said the incident will have no financial impact on its customers.

The leaked data, currently available from Cryptome and other sources, was first distributed via Twitter using several accounts that tweeted a global-files.net link to news outlets, journalists and others.

The leaked information, totaling roughly 1.5 Gb in size, consists of more than 15,000 files. The data includes banking information, payment card details, email addresses, passwords, physical addresses, phone numbers, and QNB user profiles.

The user profiles, which in some cases contain photographs, were stored in folders whose names suggest that they are linked to government organizations, including intelligence agencies, in Qatar and other countries. One of the folders includes information on people working at Qatar-based media company Al Jazeera.

According to the bank, however some of the information leaked was pulled from “non-QNB sources”.

“While some of the data recently released in the public domain may be accurate, much of it was constructed and contains a mixture of information from the attack as well as other non-QNB sources, such as personal data from social media channels,” the statement read. 

“We believe the nature of this incident is fundamentally an attempted attack on QNB Group’s reputation and not specifically targeted at our customers,” the bank said.

“All our customers’ accounts are secure, and as always, we encourage customers to be vigilant, taking the usual precautions of frequently changing their usernames and passwords through QNB Group internet banking.”

Established in 1964 as the country’s first Qatari-owned commercial bank, QNB Group reported profits of $787 million for the first quarter of 2016.

News of the breach at Qatar National Bank comes just weeks after Bangladesh’s central bank announced that cybercriminals managed to steal over $100 million from one of its accounts at the Federal Reserve Bank of New York. The bank managed to recover some of the money, but $81 million that were transferred to the Philippines are still missing.

British defense, security and aerospace company BAE Systems revealed last week that the attackers appear to have used custom malware that allowed them to conduct fraudulent transfers without being detected.

(Additional reporting by Eduard Kovacs)

Written By

For more than 10 years, Mike Lennon has been closely monitoring the threat landscape and analyzing trends in the National Security and enterprise cybersecurity space. In his role at SecurityWeek, he oversees the editorial direction of the publication and is the Director of several leading security industry conferences around the world.

Click to comment

Expert Insights

Related Content

Data Breaches

GoTo said an unidentified threat actor stole encrypted backups and an encryption key for a portion of that data during a 2022 breach.

Incident Response

Cygnvs emerges from stealth mode with an incident response platform and $55 million in Series A funding.

Funding/M&A

Thoma Bravo will spend $1.3 billion to acquire Canadian software firm Magnet Forensics, expanding a push into the lucrative cybersecurity business.

Incident Response

A new Mississippi Cyber Unit will be the state’s centralized cybersecurity threat information, mitigation and incident reporting and response center.

Data Breaches

T-Mobile disclosed another massive data breach affecting approximately 37 million customer accounts.

Application Security

Password management firm LastPass says the hackers behind an August data breach stole a massive stash of customer data, including password vault data that...

Cybercrime

A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...

Application Security

Big-game malware hunters at Volexity are shining the spotlight on a sophisticated Chinese APT caught recently exploiting a Sophos firewall zero-day to plant backdoors...