A threat actor has published a post on a dark web forum claiming to have obtained sensitive financial data from over 13 million Indian banking customers. The post suggests that the data is being offered for sale to a single buyer for $10,000.
According to the alleged leak, the data set includes personal and financial details such as account numbers, account holder names, IFSC codes, phone numbers, and email addresses. The threat actor has reportedly provided a sample of 6,000 lines and insists that escrow services will be accepted for the transaction.
The alleged breach is said to involve major Indian financial institutions, including the State Bank of India (SBI), HDFC Bank, ICICI Bank, Kotak Mahindra Bank, and several others. The post further claims that the dataset is formatted in CSV, with a total size of 11.2GB.
