finsmart-news_admin 
Cybersecurity researchers say tens of thousands of bank login credentials have been discovered onto the dark web, belonging to customers in a single country.
The security firm Dvuln says the information it has uncovered was stolen from customers with bank accounts in Australia, spanning four years of malware attacks.
Dvuln says it has found login credentials for 14,000 Commonwealth Bank customers, 7,000 ANZ customers, 5,000 NAB customers and 4,000 Westpac customers.
“The actual number of compromised customer devices is likely substantially higher, as many infections remain undetected or are traded in private channels outside our visibility.”
The data was taken from phones and other devices infected with malware and not due to hacks of the bank’ security systems.
Dvuln says a concentrated and cooperative effort is required to combat this type of fraud, citing a recent report from KELA finding billions of passwords have now been lifted from devices worldwide.
“…This represents only a fraction of a much larger global problem.
When viewed alongside industry findings that 3.9 billion passwords have been stolen through infostealer malware and that these credentials are systematically traded in underground markets, the scale of the threat becomes clear.”
