An Iranian hacker published the information about some 3 million debit cards of 10 Iranian banks, including codes and passwords.
The information has been published by someone named “Khosrow Zare Farid” who was the manager of a company which operates SHETAB payment network in Iran and produces and installs POS devices.
“Around one year ago I found a critical bug in the system. Then I wrote and sent a formal report to all the CEO of banks in Iran but none of them replied to me. Now I decided to publish the information. Governments tried to catch me by Iran Cyber Army but they failed,” he said, according to Kabir News website
Today 3 of Iranian banks including Saderat, Eghtesad Novin and Saman sent SMS to their clients to update the password of their debit cards.
The Central Bank of Iran has strictly recommended clients of the banking system to change passwords of their debit cards due to probable risks of illegal access.
“We ask people to change the password of their debit cards if they have not changed the main password in the previous months. It will maximize the security of your accounts and improve the restrictions of illegal usage of debit cards,” the central bank announced in a formal declaration, Mehr news agency reported.
Update:
Read the follow up information in my recent post: Banking System Vulnerability – 3 million bank accounts hacked in Iran