Internet Security Center
Total Tests:
This Week:
Today:
Cybercrime Investigations Weekly
A US Federal Contractor Linked To The $46M Crypto Theft Arrested
March 12, 2026
Finnish Psychotherapy Center Hacker Gets Nearly 7 Years In Prison
March 5, 2026
Former Exec Gets 7+ Years For Selling Hacking Tools To Russian Exploit Broker
February 26, 2026
Spanish Police Arrest A Man For Allegedly Booking Luxury Hotel Rooms For One Cent
February 19, 2026
Former US DOD Employee Faces Up To 100 Years In Prison For Aiding Nigerian Scammers
February 12, 2026
Stay in Touch

Get the latest updates, weekly insights, and invites to webinars and events.


Your data will stay confidential Private and Confidential

ImmuniWebInternational Media Coverage

Supplier hack leaks UBS data – including CEO's phone number

IT PRO
By Nicole Kobie for IT PRO
Thursday, June 19, 2025

The incident is just the latest to target a bigger company via its suppliers or partners, with 97% of American banks hit by third-party data breaches in 2024.

"From the technical viewpoint, this incident is a grim reminder that third parties are the Achilles' Heel even of the largest financial institutions," said Dr. Ilia Kolochenko, CEO at ImmuniWeb and a Fellow at the British Computer Society (BCS).

ChainIQ has many big-name banks as customers, and though others haven't yet confirmed they were victims of the attack, it could prove to have serious implications for the wider industry.

"Before the exact scope of the alleged data breach is known and verified, it would be premature to make final conclusions," Kolochenko said in a statement sent to ITPRO. "However, based on the publicly available data, this data breach may have a disastrous and long-lasting impact on the Swiss banking industry, given that UBS is the largest financial institution of the country."

While no client data was lost, the information on employees that was stolen could be used by hackers in a number of ways, including future scams, fraud, and phishing attacks, with the data used to help impersonate bank employees, he said.

"The wide availability of generative AI tools, capable of impeccably impersonating voices and even videos, may certainly amplify the consequences of the data breach," he added. "Worse, some of the stolen data may be exploited to blackmail bank employees or even facilitate money laundering via sophisticated social engineering operations."

To help avert the worst of that impact, Kolochenko called for UBS to notify employees and customers of the potential risks. "From the legal viewpoint, the question of liability is complex, however, it is perfectly possible that the bank may eventually be liable to the victims for the damage suffered as a result of the attack," he added. Read Full Article


Previous Media Publications:

Infosecurity Magazine: UBS Employee Data Reportedly Exposed in Third Party Attack

SecurityWeek: Encryption Backdoors: The Security Practitioners' View

This website uses cookies to provide you with a better surfing experience. To learn more, please visit our Privacy Policy. By continuing to use this website you consent to our use of cookies.

Ask a Question