We continue to cover the situation around yesterday’s data leak, which is attributed to MTS Bank. According to the latest data, the leaked file contains 3,095,392 records including SHA1 hashes without salt and partial payment card details (source).
Based on the latest analysis, all 3,095,245 Bin codes (the first six numbers of the card) identified in the leak can be associated with MTS Bank. This conclusion is supported by data obtained from Finnso.com, Mastercard.us, and Bincheck.io.
Surprisingly, the leaked file not only reveals the validity of the cards but also provides information about their release dates, something usually not disclosed by payment systems.
Furthermore, the presence of TIN (Tax Identification Number) among the leaked data suggests that the leak is unlikely to have originated from a retail company.
Although the evidence points towards a possible leak from MTS Bank, it cannot be confirmed at this time. Nonetheless, these new findings raise questions about the credibility of public statements regarding the data breach.