Santander staff and customer data stolen in major cyber attack

A hacking group was reportedly behind a similar data breach of Ticketmaster which emerged earlier this week.

Anna Wise
Friday 31 May 2024 17:56 BST
Santander is the latest victim of a cyber attack (John Stillwell/PA)
Santander is the latest victim of a cyber attack (John Stillwell/PA) (PA Archive)

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

Santander is the latest victim of a cyber attack – with hackers accessing data relating to all its staff and millions of overseas customers, the bank confirmed.

A hacking group was reportedly behind a similar data breach of Ticketmaster, which emerged earlier this week.

Certain information relating to all current and some former Santander staff – as well as customers in Spain, Chile and Uruguay – was accessed in the breach, the lender said.

“No transactional data, nor any credentials that would allow transactions to take place on accounts are contained in the database, including online banking details and passwords,” it said.

Santander employs about 200,000 people worldwide, including around 20,000 in the UK.

We apologise for the concern this will understandably cause and are proactively contacting affected customers and employees directly

Santander

No customer data in the UK, or any other of its markets, were affected.

“We apologise for the concern this will understandably cause and are proactively contacting affected customers and employees directly,” the bank said in a statement shared earlier this month.

It also stressed that its banking systems were not affected and customers could continue to “transact securely”.

According to reports, the ShinyHunters hacking group claimed responsibility for the cyber attack and said it had stolen the personal details of millions of people.

Dark Web Informer, researchers who expose threat alerts and breaches, said ShinyHunters was allegedly selling access to Santander’s database for two million US dollars (£1.6 million) to a “one time” buyer.

The hackers said Santander was “also very welcome” to buy the data themselves.

Santander has not commented on the accuracy of these claims.

On Thursday, it emerged that Ticketmaster was the subject of a cyber attack, with ShinyHunters allegedly demanding around £400,000 in a ransom payment to prevent the data being sold on the dark web.

Ticketmaster did not publicly confirm the breach.

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in