CyberArts Cyber Security unit detected a threat actor on one of the dark web forums, claiming to have user data belonging to Garanti Bank and to sell them on this forum site.

On July 6, 2021, the data breach of Garanti Bank was published on the institution's website. In the data breach announced for Garanti Bankası;

• As a result of the evaluation made by the data controller, it is strongly believed that the employees may have shared the information of various customers they have obtained based on inquiries with third parties,
• A branch employee viewed KKB (Credit Registration Bureau) records of 3277 different people, 85% of whom were not branch customers and 90% of them were from different customer segments,
• An employee at the Akyazı branch viewed KKB (Credit Registration Office) records belonging to 5079 different people, 90% of whom are not branch customers and 70% of whom reside in a different city,
• It is concluded that the category of personal data affected by the breach is financial information.

Data breaches in banks, where we have a lot of private data, are among the news we have heard frequently recently. It is very important for companies and institutions to take security measures and precautions regarding data protection, and especially to train employees in this regard, in order to prevent future data breaches.