Hundreds of Thousands of Indian Bank Records Were Leaked Online

Last updated September 17, 2021
Written by:
Bill Toulas
Bill Toulas
Cybersecurity Journalist

Cyble’s dark web crawlers have located an interesting leak involving the banking records of customers of the Axis and the ICICI bank. Both of these financial institutions are based in India, and the details seem to concern exclusively Indian citizens. The leak includes almost 369,500 records, which appear to have been aggregated from various sources and combined into two databases.

Roughly 30,500 of the records belong to Axis bank customers, while another 339,000 come from ICICI bank clients. Cyble’s researchers called some of the people in the records to validate the authenticity, and unfortunately, they have confirmed it.

The information in the Axis bank listings includes the following details:

aggregated data

Source: Cyble

ICICI bank records have exposed the following details about the customers:

Neither ICICI nor Axis have announced a breach on their websites or social media channels, so the exposed customers are most likely unaware of the fact that such sensitive information has been leaked. By using the above information, actors could take things as far as identity theft, so taking precautionary measures right now is key.

Since mobile phone numbers are included in the lists, phishing calls and SMS messages with links to phishing sites are very likely.

bank info forum

Source: Cyble

We have reached out to Cyble for more details about the poster of the data, and they told us that the database is not for sale, but instead freely shared on forums. The poster is most likely naive, not fully understanding what he/she is sharing.

As for the banks, Cyble sees no evidence that there has been a hack on their systems, as the data looks like it has been collected by an aggregator. This still doesn’t make the situation any better for the exposed clients, though.

If you are a customer of either ICICI or Axis, you should check yourself on Cyble’s “AmIBreached.com” service to figure out if you are among the exposed clients. If you are, you should contact your bank and follow their instructions on how to protect your data and account. Finally, stay vigilant against all incoming communications and treat everything suspiciously, especially if it claims to come from your bank.



For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: