Hackers have reportedly taken over the website of GTBank, one of Nigeria’s largest financial institutions, in a significant phishing operation that has compromised customer data.
The cyberattack, which began on August 14, has yet to be claimed by any hacker group. As of Wednesday night, the bank’s official domain, gtbank.com, was inaccessible, just a day after the domain was renewed for another five years, from August 13, 2024, to March 21, 2029. Multiple online platforms that monitor domain information confirmed this renewal.
The attackers are believed to have created a fake website version, likely intending to trick customers into revealing sensitive information through phishing. A cybersecurity expert with experience in Nigeria’s banking sector suggested that the bank’s login credentials might have been compromised, leading to the breach.
Customers of GTBank have taken to social media platform X to voice their frustrations, reporting that they were unable to access the bank’s website to conduct transactions. In response, some of the bank’s representatives on X have urged customers to be patient and directed them to alternative channels for assistance.
Fortunately, GTBank’s mobile applications for Android and iOS devices appeared to remain functional at the time of this report. GTBank, which serves millions of customers across Nigeria and other African countries, has yet to release an official statement regarding the incident.