Hackers Steal GTBank Website, Intercept Customers’ Data In Massive Phishing Operation

Hackers Steal GTBank Website, Intercept Customers’ Data In Massive Phishing Operation

Suspected cybercriminals appeared to have compromised the domain address of Nigeria’s banking giant GTBank since Wednesday night, 14th August, 2024.

The incident came a day after the domain name was renewed for another five years from August 13, 2024, through March 21, 2029, according to multiple online platforms that analyse domain information.

No hacker has claimed responsibility for the vandalism yet, which appeared to have started midnight yesterday, August 14.

Already, the attackers appeared to have created another HTTP layer of the website in an apparent ploy to steal customers’ data through phishing.

Hackers Steal GTBank Website, Intercept Customers’ Data In Massive Phishing Operation
Gtbank website returns error message as users tried to visit the web page

A cybersecurity expert with experience in the Nigerian banking industry said it was possible that the bank’s login details were compromised, as against the domain address itself being stolen for a resale at a more lucrative deal online.

Hackers Steal GTBank Website, Intercept Customers’ Data In Massive Phishing Operation
The registration details of the bank was allegedly changed by the hacker

This phishing attack has now caused Gtbank’s domain name to be owned by someone else, either by the hackers or whoever they choose to sell it to.

This brings the question if GTBank, being one of the biggest banks in Nigeria, did not have a DNSSEC set up which would have prevented or mitigated this hack.

The bank’s mobile infrastructure did not appear to have been affected for now, as Android and iOS-based applications are still in operation.

One thing is for sure, a lot of GTBank staff would definitely be losing their jobs this week.

Leave a Reply

Your email address will not be published. Required fields are marked *