The Qilin ransomware group claims to have breached Habib Bank AG Zurich (HBZ), a Swiss-based international bank specializing in trade finance, private banking, and corporate banking.
The attack is particularly sensitive as the group has leaked documents referencing the bank’s adherence to “Swiss Banking Secrecy and Professional Confidentiality.” The Qilin group has listed the bank on its data leak site, claiming to have exfiltrated 2,560 GB of data, totaling 1,991,355 files.
The allegedly compromised data is extensive and includes sensitive financial and personal information. According to the actor, the data includes:
-
Approximately 100,000 customer bank account opening records.
-
Sensitive records involving government and business circles.
-
Data on nearly 100,000 company founders who have collaborated with the bank.
-
Personal Identifiable Information (PII) such as ID numbers, email addresses, home addresses, and private phone numbers.
-
Internal bank files, including due diligence reports, market risk models, and financial dashboards.
-
Spreadsheets containing customer account titles, balances, and relationship types.











