Sri Lanka-based Commercial Bank of Ceylon Hacked

By | May 16, 2016

Commercial Bank

In last couple of months Hackers are making target to banking system to get access customer data and to steal the money. Last week UAE based Invest Bank hacked and Qatar based Bank hacked by hackers, They made customer’s data online.

This time Sri Lanka-based Commercial Bank of Ceylon has reported a massive hacking attack, they have released a statement admitting that a “hacking attack” on its website resulted in a successful intrusion – however, it maintained that no customer data has been compromised.

A online statement has published on Commercial Bank of Ceylon website

There was a hacking attack on our website and the Bank took immediate corrective steps. Our systems are fully secure and operational. The hacking attack was also immediately communicated to the relevant authorities. We confirm that no sensitive customer data were lost due to this intrusion. We are taking every measure to protect the privacy of our customers and have engaged external parties to review all our systems to ensure that no vulnerabilities exist. Commercial Bank of Ceylon PLC is committed to provide safe and reliable systems and is at the forefront of providing secure banking services.

The statement did not elaborate when the so-called ‘intrusion’  or hacking activity took place or exactly what computer systems were targeted by hackers.

According to the Bank Info Security statement

Commercial Bank of Ceylon, based in Colombo, Sri Lanka, has apparently been hacked, with its data posted online May 12 by the Bozkurtlar hacking group. Still no verification for the data is done by bank authority.

Security researchers told that

The dump appears to have occurred in October of last year, which suggests the compromise took place before that, according to the researcher.

Bank Info Security published in the blog that

The attackers appear to have compromised the bank’s systems using a SQL injection attack and uploading a Web Shell – a script that enables remote administration – onto the bank’s PHP server, the researcher says. He bases this conclusion on the presence of artifacts from the hack in the data dump, including logs and files the indicate where the SQL injection was used and where the Shell was injected.

Subscribe for latest hacking update