UniCredit Staff Data for Sale on Cybercrime Forum After Hack (1)

April 21, 2020, 7:44 AM

Data on about 3,000 UniCredit SpA employees was put up for sale on cybercrime forums after a hacking attack.

The data went on sale on April 19 and contained what the hacker said was information on UniCredit workers, including emails, phone numbers, encrypted passwords and names, Telsy, a unit of Telecom Italia SpA, wrote on its website Monday.

“The database appears to be genuine and the potential result of a SQL injection attack,” Telsy wrote. A SQL injection is a malicious code-insertion technique used to attack applications.

UniCredit said it was investigating the matter and is contacting “relevant authorities.” ...

To read the full article log in.

Learn more about a Bloomberg Law subscription.