Bradesco Financiamentos announces a possible data leak of 53 thousand customers

Bradesco announced that its subsidiary Bradesco Financiamentos has detected a data leak on approximately 53,000 customers. The company reported that a minor incident was encountered that may have allowed unauthorized viewing of customer contracts.

“All necessary measures have been taken to resolve the incident, as well as communication to customers and relevant authorities,” the bank said in a statement sent to the Reuters news agency.

Bradesco also informed that the possible loss did not jeopardize the integrity of access to customers’ transactional systems.

“Unfortunately, the leakage of personal data by financial institutions is increasingly common and recurrent. They usually claim that the leaked data is registration data and that it is not data that could compromise the owner or that presents a problematic level of risk to customers and users in terms of access or financial transactions. This minimizes the negative impact on the leak news, but doesn’t remove the real harm and assumption that it hasn’t created any risk for customers. We were able to understand the level of protection banks invest in issuing their password portals to prevent theft, but it is clear how they overshadow the security of registration data. This increases the frequency of unauthorized people accessing data or customers who are exposed to a vulnerability. Showing the level of risk and the low effort of institutions in terms of end-to-end security, ”says Thiago Cabral, specialist in Digital Security.

According to him, the registration data has a high value for the black market: “They are a goldmine for criminals to commit digital scams, as has happened very often. One of the reasons WhatsApp, email and texting attacks and scams are on the rise is likely related to this type of personal data leaks, as scammers leverage access to this information to create and apply various scam formats. . In the case of the Bradesco data leak, the scammer could have access to the contractual data and with which he could contact the victim or the client, posing as a representative of Bradesco itself or of a financial institution, claiming to be aware that the victim has some type of financing in progress by offering attractive discounts to be paid on the spot, which can be through PIX, deposit, etc. With this, victims can be easily fooled, as criminals have much more credibility in their speeches precisely because they have access to this previously leaked information. Therefore, the leakage of this data represents a gigantic risk for the bank’s users and customers and, therefore, the banks must be penalized in this regard ”.

“The General Data Protection Act LGPD makes it clear that institutions must ensure and take care of this data. Something that isn’t happening. Now, of course, an investigation will be carried out to find out what really happened, if it was due to some negligence on the part of the bank of not having followed the proper security standards or if it was a case of force majeure, such as a third party who leaked the information, for example. But this will be assessed, because the bank can be punished under the rules of the LGPD.
For the user and the customer who has been leaked their data, our recommendation is that they really stay tuned and take care of suspicious contacts, be it email, sms, WhatsApp, phone etc., requesting data and requesting access to accounts. , asking to change passwords, because really, when you have leaked data, the likelihood of this happening and that you will suffer some sort of scam is quite high. Therefore, be suspicious and avoid transmitting data that you think is important to anyone remotely or who are not sure if it really is the bank you have an account in. Look for avenues and make sure it’s a real contact or the start of a coup, ”concluded Cabral.

Bank C6 customers divert BRL 23 million after a system failure

Recently, C6 Bank customers took advantage of a possible system error to divert the amount of R $ 23 million from the CDB Crédito product. Now, the Civil Police of São Paulo is investigating the case that benefited about 5,000 bank account holders, most of them residing in the Baixada Fluminense, in Rio de Janeiro.

Information on the fraud was disclosed by Veja, who reported that there are several lines of investigation. One in which the police find out if the coup was planned by a criminal organization and another in which officers suspect that the problem has been discovered and one has passed the information on to the other.

The scam was committed by existing account holders and on unique smartphones, which attracted a lot of attention to the case. The detours occurred at specific points in the communities of Rio de Janeiro and even though justice blocked the accounts of all involved, getting the money, all the people have some kind of debt in the bank.

The post Bradesco Financiamentos announces possible data loss of 53,000 customers first appeared on Olhar Digital.

Source: Olhar Digital