LONDON—A hacker who allegedly stole a critical database maintained by the London Stock Exchange Group containing information on terrorists, potential criminals and high-risk individuals is now threatening to leak troves of the sensitive data online, Bank Info Security is reporting.
According to the report, the threat actor known as GhostR said it would soon begin releasing some of the 5.3 million stolen records from World-Check, a screening database used by banks and other institutions to combat financial crimes and enforce government sanctions.
Bank Info Security said the hacker claimed to gain access to the database through a Singapore-based firm with World-Check access. The firm had a continuous integration server that had administrative access on by default, according to posts on a popular hacking forum reviewed by Information Security Media Group Bank Info Security said, noting TechCrunch first reported the leak.
Authorities Notified
The London Stock Exchange Group confirmed to TechCrunch the breach of the third-party data set and said the hackers had not gained access into its any LSEG systems, Bank Info Security said.
"We are liaising with the affected third party, to ensure our data is protected and ensuring that any appropriate authorities are notified," An LSEG spokesperson said.