On Sunday, Santander Bank announced it was hacked by a group attempting sell customer and employee data on the dark web. Santander is reporting all of its staff information has been leaked, and millions of customer account and personal details are compromised.

Santander is reporting NO TRANSACTIONAL DATA including credentials, passwords, and other information that could be used to conduct transactions were stolen. The bank is saying customers can continue making transactions as part of normal business.

Who’s Taking Responsibility

A group calling themselves the ShinyHunters has been attempting to sell customer account details and HR records on the staff.

Here’s the data they’ve stolen:

• 30 million people’s bank account details.
• 6 million account numbers and balances.
• 28 million credit card numbers.
• HR records for all 200,000 Santander staff members.

The leaked records affect people in Chile, Spain, and Uruguay. According to the BBC, no UK customers were affected by the hack. And no news has been spread about US Santander customers.

They are ransoming the data for $2 million dollars.

ShinyHunters also claimed responsibility for the massive Ticketmaster hack. That hack affected 560 million Ticketmaster customer records. They only asked for $500,000 for that ransom. And no one is feeling sorry for Ticketmaster.

It’s hard to tell is US customer data is in the hack. News outlets haven’t directly stated, but if you have a Santander account, I know a few folks in the North East who do, now might be a good time to change your passwords to protect yourself.