According to report, security experts believe that the sensitive details of customers of the state-run bank were offered for sale through a website for at least three months. Meanwhile the Hong Kong-based English language news reported that the bank was tipped off on Wednesday night about the data breach by CloudSek Information Security, a company registered in Singapore that also has its office in Bengaluru.
Meanwhile the firm monitors data transactions. Chief technical officer Rahul Sasi was quoted as saying by the news site “We have a crawler that is deployed in the dark/deep web. These are sites on the Internet which are not indexed by Google or other major search engines. They are used to buy and sell sensitive data illegally. Our crawler detects any such data and sends it to Machine Learning software that we have created.”
Accordingly PNB’s Chief Information Security
Officer T. D. Virwani has confirmed it was working with the government to
contain the fallout from the release of the data. The data available for sale
includes names, expiry dates.
