Data Breach at Primorsky Bank Primsotsbank

Information security specialists have reported that an SQL dump from the Bitrix CMS has been published in the public domain, containing data from users of the Primorsky Bank Primsotsbank (pskb.com) website. According to Data Leakage & Breach Intelligence (DLBI) and the in2security Telegtam channel, two files were posted on the network – logcard.txt and pskb_user.sql.

Registered Users Table

The Registered Users table contains 90,848 entries, including logins, hashed passwords, email addresses (90,829 unique addresses), and names and surnames. The data covers the period from December 22, 2016 to December 29, 2022.

Applications for Banking Services

In addition to a partial dump, a text file with logs of the module for registering applications for banking services has become publicly available. This file contains 7335 applications for the period from February 16, 2021 to June 21, 2023. Applications include data such as full name, email addresses, phones (2046 unique numbers), addresses, passport data (series, number, by whom and when issued), and dates and places of birth.
Official comments on this incident from representatives of the bank have not yet been received.