In the online bank Comdirect it came on Monday to a serious data breach.. Comdirect confirmed “technical problems, due to a software recording”. Accordingly, customers had after logging access to the accounts of other clients. After a software update in the morning, the data leak should be closed again according Comdirect.
What happened?
A spokesman for the bank confirmed that there were technical difficulties. As the “Handelsblatt” reported landed on Monday morning a customer Comdirect Bank after logging surprisingly on another customer’s account. Accordingly, the man repeatedly logged off and on again – and had repeatedly to different accounts access. An editor of the newspaper was able to reproduce the bug and get access to an account with more than EUR 50 000 amounts held in current and savings account.
Among other things, so it was possible to call even account statements. Several readers of “Heise Online” have confirmed the massive vulnerability, reports the IT professional portal. Comdirect stressed but according to current knowledge, it was not possible to manipulate the foreign data. “The customer assets remained at all times at the customer,” a spokesman said.
How many users are affected?
According to the Comdirect-speaker were from the breakdown “a few thousand customers” affected. The Commerzbank subsidiary based in Quickborn has around 2 million customers. Sufferers should “be contacted immediately.” Through its Facebook page, the bank announced to keep their customers up to date, by the afternoon but there were no further entries.
How did it come to the current security leak?
according Comdirect the data breach had occurred after a routine software recording at night to Monday. Further details were not immediately known. After restarting the site was in the morning partly limited reach, after the problems were resolved, the spokesman said. “Heise Online” reported, citing an internal source that may be a database error was the trigger. That, however, did not confirm the speaker. The failure analysis run yet, he said.
If the data breach an isolated case?
The Panne at Comdirect is not an isolated case. Beginning of June, it had come at Deutsche Bank in a massive IT glitch. Around 2.9 million accounts were affected. Here withdrawals and deposits were shown part double. The account balances were characterized displayed higher or slipped into the red. Overall, more than 13 million bookings were affected. Cause recorded German bank a processing problem that was corrected in error.
Even with the DHL came last to a vulnerability could hijack over which foreign parcel compartments. This occurred because the companies need to pick mTAN no longer sent via SMS to the customer’s telephone, special she indicated alternatively in the app. This allowed strangers, even without access to the mobile phone of each client easy access to the code gain.
No comments:
Post a Comment