Telefónica Cybersecurity & Cloud Tech manages the fraudulent actions against Banco Sabadell, and all issues related to security incidents against this company.
We have detected the disclosure of confidential information of our client without their authorization, in the following URLs:
In the reported files, the following corporative email address is exposed: pgarcia@cam.es. The domain "cam.es" belongs to our client.
This information should have been kept confidential and whose public availability poses a security risk to our client, due to different reasons, such as:
Corporate e-mails could grant access to our client's servers, network or domains, and to sensitive and confidential information of our client and its customers. For this reason, these kind of e-mail addresses could be the target of brute force / dictionary attacks or social engineering, to retrieve their corresponding passwords, and therefore get unathoorized access to our client's Information systems.
Corporate e-mails are used mainly within the organization, but by making it public it could be used in fraudulent campaigns related to malware, ransomware, spear phishing, etc., that could greatly compromise the security of our client's information systems.
This unauthorized use of restricted information represents a security risk for Banco Sabadell. We need your collaboration by removing this content as soon as possible. If you need more information regarding this incident, please contact our SOC 24/7 at +34 900 102 230 (option 9) or by replying to this email.
Thank you very much for your attention. Looking forward to your reply.
To your attention,
Telefónica Cybersecurity & Cloud Tech manages the fraudulent actions against Banco Sabadell, and all issues related to security incidents against this company.
We have detected the disclosure of confidential information of our client without their authorization, in the following URLs:
https://github.com/skpupil/graduation/blob/47412eac1aec069dd499cd182b740cd52cedc202/shenango/apps/parsec/pkgs/libs/ssl/src/crypto/des/times/aix.cc#L1
In the reported files, the following corporative email address is exposed: pgarcia@cam.es. The domain "cam.es" belongs to our client.
This information should have been kept confidential and whose public availability poses a security risk to our client, due to different reasons, such as:
Corporate e-mails could grant access to our client's servers, network or domains, and to sensitive and confidential information of our client and its customers. For this reason, these kind of e-mail addresses could be the target of brute force / dictionary attacks or social engineering, to retrieve their corresponding passwords, and therefore get unathoorized access to our client's Information systems.
Corporate e-mails are used mainly within the organization, but by making it public it could be used in fraudulent campaigns related to malware, ransomware, spear phishing, etc., that could greatly compromise the security of our client's information systems.
This unauthorized use of restricted information represents a security risk for Banco Sabadell. We need your collaboration by removing this content as soon as possible. If you need more information regarding this incident, please contact our SOC 24/7 at +34 900 102 230 (option 9) or by replying to this email.
Thank you very much for your attention. Looking forward to your reply.