Hackers Claim Major US Bank Data Breach, Allegedly Posting Names, Social Security Numbers, Account Numbers and More for Sale on Dark Web

Hackers say they’ve stolen sensitive data from customers at a major US bank, and are now attempting to sell the alleged data on the dark web.

Bad actors have stolen the names, social security numbers, bank accounts numbers, transaction histories, and other private data from customers of HSBC USA, which is the US branch of the British banking company.

That, according to a new report from Cybersecurity News.

The hackers have posted the data for sale on the dark web for $75,000, stating it “contains a treasure trove of valuable and sensitive information” that was “obtained by our skilled team.”

While HSBC acknowledged that it was recently the victim of a denial-of-service (DOS) attack, it never admitted that any customer data was breached, according to the report.

The bank said that after investigating the matter, it found that no legitimate HSBC customer data was stolen and that no financial losses have been reported.

As stated by a spokesperson for HSBC to Cybersecurity News,

“The claims made by this threat actor are false. HSBC conducted a thorough investigation and reviewed the sample data set posted by the threat actor.

We have determined that the sample does not comprise legitimate HSBC customer data and that the sample data did not originate from any breach of HSBC systems or those of any of our service providers. There is no indication any HSBC customer data has been exposed.”