The Bank of Ayudhya, also known as Krungsri, has recently found itself at the center of a cyber attack. The K0LzSec hacker group, a relatively new player in the cyber world, has claimed responsibility for the data breach and provided evidence in the form of a check-host link. This tactic of disclosing targets on data leak platforms has been used by other hacker groups in the past.
While the bank has yet to confirm the breach, the alleged security incident has raised concerns about the safety of customer data and highlights the ongoing trend of cybercriminals targeting the financial sector in Thailand. The Cyber Express reached out to the bank for confirmation and further information, but as of now, no official statement or confirmation has been received, casting doubt on the authenticity of the breach claims.
This data breach is not an isolated incident in Thailand. Another hacking group called NDT SEC recently announced an attack on Delta Electronics using the same check-host link as in the Krungsri data breach. Thailand has experienced a surge in cyber attacks in recent months, with the average frequency of attacks on Thai organizations nearly doubling the global average, according to Check Point Research.
Krungsri took measures to protect its digital ecosystem by banning rooted or jailbroken devices, which effectively restricted access to its Krungsri Mobile App. This initiative was in line with the Bank of Thailand’s Guiding Principles for Mobile Banking Security and aimed to mitigate the risks posed by compromised devices.
Thailand’s cybersecurity landscape is fraught with dangers, as multiple malware strains pose significant threats. NDT SEC previously listed nine Thailand-based banks as victims in a dark web post, including Krungsri. Cyber attacks involving the Banking Trojan (Zeus), Cryptominer (XMRig), and Info-stealer (Qbot) are particularly concerning. Social engineering, especially via email, plays a significant role in the distribution of malicious files.
The global scenario is equally alarming, with a surge in cyber attacks worldwide. In the second quarter of 2023, there was an 8% increase in average weekly attacks compared to the previous year, the highest tally in the past two years. Organizations globally face an average of 1,258 attacks per week, underscoring the escalating cyber threat landscape.
It is essential to note that the information provided in this report is based on internal and external research and should be used for reference purposes only. Users are responsible for their reliance on this information, and The Cyber Express assumes no liability for its accuracy or the consequences of using it.
In conclusion, the alleged data breach at Krungsri is a concerning development in Thailand’s cybersecurity landscape, which has seen an increase in cyber attacks targeting various organizations. The prevalence of attacks using social engineering and the presence of sophisticated malware strains highlight the urgent need for organizations to bolster their cybersecurity defenses.