Cyberattack hits external provider for Colombian banks

Kiswahili

Colombian banks face a potential indirect cyberattack via an external debt collection provider, compromising customer data such as names, IDs and phone numbers. BBVA and Nu Colombia confirmed the incident and activated security protocols. No entity reports access to keys or deposits.

An external debt collection provider suffered unauthorized access, potentially affecting several Colombian banks. Extracted information includes customer names, ID numbers and phones, according to preliminary reports.

BBVA Colombia detected the incident on its provider's platform. "BBVA in Colombia reports that it detected unauthorized access on the technological platform of one of its external providers in charge of debt collection management, which compromises some data from a set of customers," the bank stated. It clarified that affected data does not include keys, passwords or deposit information, as the provider lacks access to them. It immediately disconnected communication channels, started an investigation and notified impacted clients.

Nu Colombia also confirmed one of its providers was hit by illegal data extraction. The entity activated security protocols, is coordinating with authorities and assures no unauthorized access to its infrastructure or direct financial data.

Both banks advise customers to distrust suspicious communications, avoid dubious links and verify directly with official channels any requests for personal information.

Makala yanayohusiana

Illustration depicting frustrated customers and technical staff at a Bancolombia bank branch during a widespread service outage.
Picha iliyoundwa na AI

Bancolombia faces technical failures in digital and physical channels

Imeripotiwa na AI Picha iliyoundwa na AI

Bancolombia bank reported service outages starting from the early morning of Monday, February 23, 2026, due to technical adjustments that did not go as planned. The entity assured that it was not a security incident and that customers' resources and information are protected. They prioritized essential operations while working on stabilization.

Colombian organizations face 2,803 weekly cyberattacks

In 2026, organizations in Colombia face an average of 2,803 weekly cyberattacks, with potential losses up to US$6.3 million per incident. Recent data leaks via third-party providers have exposed sensitive information from BBVA and Nubank clients, as well as from entities like Supersalud and Dian. Experts warn about the vulnerability of these weak links in the security chain.

Bancolombia announces return to normal operations after outages

Imeripotiwa na AI

Bancolombia reported that all its services have returned to normal after nearly four days of infrastructure disruptions. Users faced difficulties with various digital platforms and transactions. The bank assures that no personal data was exposed nor resources affected.

America

DIAN assures cyber incident does not affect citizens' data

America

Smishing SMS scams circulate in Colombia during Semana Santa

America

Legal action taken against banks and fintechs over 4x1000 reform delays

Swedish government IT data leaked on darknet

A hacker group called ByteToBreach has leaked sensitive information from a government IT system on the darknet. The leak includes source code, passwords, and personal data from a platform managed by IT consultant CGI Sweden. Authorities like Cert-SE confirm they are aware of the reports but decline to comment.

ANCI rules out recent cyberattack on TGR and ClaveÚnica

Imeripotiwa na AI

Chile's National Cybersecurity Agency (ANCI) ruled out a recent cyberattack following reports of a suspected data leak at the General Treasury of the Republic (TGR). Authorities confirm services are operating normally and data was previously leaked. Lawmakers voiced concerns over structural cybersecurity shortcomings.

Belambra hit by data breach after Pierre and Vacances

Tourism group Belambra announced on Saturday that it had been hit by a security incident exposing client reservation data, including that of many minors. The attack follows closely on a similar leak at rival Pierre and Vacances-Center Parcs.

European Commission confirms cyber attack on Europa.eu infrastructure

Imeripotiwa na AI

The European Commission has disclosed a cyber attack that affected its cloud infrastructure hosting the Europa.eu websites. Officials stated that data was taken from the sites, and the incident has been contained while investigations continue. Bleeping Computer reported that hackers accessed over 350GB of data, including employee information.

Jumamosi, 16. Mwezi wa tano 2026, 05:15:47

BBVA announces AI investment in Colombia after 30 years

Jumapili, 3. Mwezi wa tano 2026, 17:35:33

ANCI confirms infiltration in public agency due to stolen credentials

Alhamisi, 30. Mwezi wa nne 2026, 16:39:02

Banco de Bogotá enables QR codes for Bre-B keys

Ijumaa, 17. Mwezi wa nne 2026, 12:05:02

Standard Bank data dumped daily after cyberattack ransom refusal

Jumatano, 15. Mwezi wa nne 2026, 01:04:32

Inditex reports unauthorized access to internal databases

Jumatatu, 6. Mwezi wa nne 2026, 01:15:57

Bbva to invest over $300 billion in artificial intelligence in Colombia

Jumapili, 22. Mwezi wa tatu 2026, 00:37:59

BTG Pactual suspends Pix after hacker attack diverts R$ 100 million

Ijumaa, 27. Mwezi wa pili 2026, 21:40:54

Bancolombia to open all offices on Saturday February 28

Jumatano, 25. Mwezi wa pili 2026, 01:33:44

Marcela Torres questions Bancolombia's massive outage due to operational failures

Jumatano, 18. Mwezi wa pili 2026, 12:20:28

Breach in Ficoba file exposes 1.2 million accounts

 

 

 

Tovuti hii inatumia vidakuzi

Tunatumia vidakuzi kwa uchambuzi ili kuboresha tovuti yetu. Soma sera ya faragha yetu kwa maelezo zaidi.
Kataa