ICICI Bank Data Leak

kartikoli

ICICI Bank leaked millions of records with sensitive data, including financial information and personal documents of the bank's clients.

ICICI Bank, an Indian multinational valued at more than $76 billion, has more than 5,000 branches across India and is present in at least another 15 countries worldwide.
A misconfiguration of the bank systems exposed millions of records with sensitive data.
Among the leaked data were bank account details, bank statements, credit card numbers, full names, dates of birth, home addresses, phone numbers, emails, personal identification documents, and employees' and candidates' CVs.
Cybernews contacted ICICI Bank and CERT-IN, and the company fixed the issue.

Source https://cybernews.com/security/icici-bank-leaked-passports-credit-card-numbers/

WTH is going on these days

lockhrt999

Like I said in a different thread, it is run by a council. What did one expect?

Banks force customers to change passwords frequently, block copy pasting, do all kinds of nonsense which does absolutely crap sh1t to increase the security. But for them themselves don't follow good practices. In my experience, crappy looking software will have crappy security.

6pack

No wonder they were forcing people to lock down their phones. This is just misdirection. Wave one hand and other hand does funny business like magicians. Their server had holes in it so they blamed people for enabling developer options or using vpn.

sandeepsachin

Is it better to get the credit cards replaced with new ones? Or cancel the cards altogether?

Ssreek

kartikoli said:
ICICI Bank leaked

Does it mean company deliberately or accidentally or some other reason?

dafreaking

Last week their 3D Secure Server (in which you input OTPs) was down for me for 2 days. Then this week they are forcing you to disable developer options.

Ssreek

dafreaking said:
Then this week they are forcing you to disable developer options.

Next, these apps could be like, give us all your phone data permissions for your own safety.

benryu

Other banks have worse software. ICICI i feel is the most decent of the lot followed by SBI. Atleast from a look and feel perspective. I am not an expert to comment on how the backend is.

kartikoli

Ssreek said:
Does it mean company deliberately or accidentally or some other reason?

Thats what the site heading said but I guess intentional leak wasn't there intention, its just negligence on there part.

sandeepsachin said:
Is it better to get the credit cards replaced with new ones? Or cancel the cards altogether?

I am No expert but the common sense says to replace your card with new one so if someone tries to do something funny with old card you are are safe.

lockhrt999 said:
Banks force customers to change passwords frequently, block copy pasting, do all kinds of nonsense which does absolutely crap sh1t to increase the security. But for them themselves don't follow good practices. In my experience, crappy looking software will have crappy security.

Exactly

ICICI Bank Data Leak

Not a Fan.