PNB customers' data exposed due to server vulnerability: Report

By Rajan Nath -- November 21, 2021 4:11 pm -- Updated:Feb 15, 2021

Critical personal information of 180 million Punjab National Bank (PNB) customers was at risk for around seven months due to a vulnerability in servers, a report stated.

As per CyberX9, the vulnerability provided access to the entire digital banking system of PNB with administrative control. The bank confirmed the glitch but denied any exposure of critical data due to the vulnerability of servers.

Also Read | Gurmeet Bawa, legend of Punjabi music industry, passes away

PNB server vulnerability exposed customers' personal, financial data for  around 7 months: CyberX9 - BusinessToday

PNB stated that the "customer data/applications are not affected due to this" and that the "server has been shut down as a precautionary measure."

Also read | Explained: PM Modi’s ploy behind repealing farm laws ahead of Punjab, UP polls

Big news for PNB customers, personal and financial data of 180 million  customers remained compromised for 7 months. Vulnerability in PNB server  exposed 18 crores customer personal and financial data for 7

CyberX9 founder and MD Himanshu Pathak alleged that Punjab National Bank kept compromising the security of funds, personal and financial information of over 180 million customers for about the last 7 months.

PNB fixed the vulnerability after CyberX9 discovered the vulnerability and notified PNB through CERT-In and NCIIPC.

Vulnerability in PNB server exposed customers' personal and financial data  for about 7 months: CyberX9 | Business News – India TV

Pathak said that CyberX9 research team discovered security issue in PNB which was leading to access internal servers, thus, exposing a massive number of banks' systems nationwide open for cyber-attacks for the last about seven months.

He also said that vulnerability was found in an exchange server which was interconnected with other exchanges and shares all access. It included access to all email addresses which results in access to all email addresses.

-PTC News

  • Share