By Syed Raza Hassan and Asif Shahzad
KARACHI/ISLAMABAD (Reuters) - Pakistan's central bank rushed on Tuesday to reassure investors and consumers that its banking system had not been hacked after a mass skimming operation hit customers' credit and debit cards.
The skimming took details of nearly 20,000 debit and credit cards from 22 Pakistani banks, according to the Pakistan Computer Emergency Response Team (PakCERT), a monitoring group.
It was not immediately clear how much money was stolen using the cards, beyond an initial report of about $20,000.
The State Bank of Pakistan (SBP) said on Tuesday it had already instructed all banks to increase their scrutiny after one lender reported the problem last week, but stressed that the banks themselves were not hacked.
"It has been noted with concern news items reporting that the data of most banks has been hacked. SBP categorically rejects such reports," a statement from the central bank said.
Earlier, Mohammad Shoaib, head of the Federal Investigation Agency's cyber-crime unit, told two television stations that "almost all" banks had been hit by hacking and a "large amount of money" had been stolen, though he gave few details.
PakCERT said in a threat report that BankIslami first noticed unusual transactions of 2.6 million rupees (about $20,000) on Oct. 27 and temporarily shut down its international payments system.
"Subsequently, several other banks issued security alerts and either completely blocked customers' debit and credit cards or blocked their online and international use," PakCert said in its report.
BankIslami, in a statement, confirmed that it had shut down its international and online payments systems and notified the central bank. It said the initial illicitly withdrawn 2.6 million rupees had been returned to customers' accounts.
PakCERT said that details of the cards were posted on the dark net, an area of the Internet only accessible via special web browsers that ensure anonymity.
Dark net users could then access the cards to make online purchases but it was not clear how much money in total had actually been stolen.
(Reporting by Syed Raza Hassan and Asif Shahzad Writing by Kay Johnson; Editing by Mark Heinrich)
Disclaimer: No Business Standard Journalist was involved in creation of this content
You’ve reached your limit of {{free_limit}} free articles this month.
Subscribe now for unlimited access.
Already subscribed? Log in
Subscribe to read the full story →
Smart Quarterly
₹900
3 Months
₹300/Month
Smart Essential
₹2,700
1 Year
₹225/Month
Super Saver
₹3,900
2 Years
₹162/Month
Renews automatically, cancel anytime
Here’s what’s included in our digital subscription plans
Exclusive premium stories online
Over 30 premium stories daily, handpicked by our editors
Complimentary Access to The New York Times
News, Games, Cooking, Audio, Wirecutter & The Athletic
Business Standard Epaper
Digital replica of our daily newspaper — with options to read, save, and share
Curated Newsletters
Insights on markets, finance, politics, tech, and more delivered to your inbox
Market Analysis & Investment Insights
In-depth market analysis & insights with access to The Smart Investor
Archives
Repository of articles and publications dating back to 1997
Ad-free Reading
Uninterrupted reading experience with no advertisements
Seamless Access Across All Devices
Access Business Standard across devices — mobile, tablet, or PC, via web or app