A threat actor has purportedly announced the sale of a database containing information of China bank customers. The database, claimed to be sourced from various banks and dated December 2023, allegedly comprises 2,314,340 records, including mobile numbers, full names, ID numbers, account numbers, bank details, and demographic information such as province, city, mobile carrier, sex, and birthday.
According to the threat actor’s announcement, the database is available for purchase at a price of $12,000 for the entire set of 2.3 million records. Alternatively, smaller batches of 100,000 lines are offered at $1,000 per batch. Payment options include various cryptocurrencies, with the possibility of utilizing escrow services or a middleman for transactions.
The threat actor emphasizes that the entire database will be sold to a single buyer only. Additionally, for interested parties seeking to verify the authenticity of the database, a smaller dataset of 10,000 lines is offered for $200.
While the legitimacy of the offer remains unverified, the announcement raises concerns regarding the potential exposure of sensitive financial information and underscores the ongoing threat posed by cybercriminals targeting personal data for illicit purposes. Authorities and financial institutions are urged to remain vigilant and enhance cybersecurity measures to safeguard customer information against such threats.
