Hackers claim breach of HSBC USA
Learn More
Threat actors are claiming a data breach targeting HSBC USA customers.
The claims were made on on dark web forums on October 28, 2025. HSBC USA has denied any customer data compromise but did acknowledge a recent denial-of-service attacks against its infrastructure.
The Cybernews research team reports there are signs suggesting the leaked data may be legitimate, and dates in the samples show that the published information could be just weeks old. The threat actor has published screenshots that appear to show stolen data from transactions primarily dated August 2025.
Some sources speculate that a third-party vendor may have been breached and attackers used compromised vendor credentials to access HSBC's internal network. The bank confirmed it recently faced a distributed denial-of-service attack that temporarily disrupted online services.
The allegedly exposed data include:
- Full names
- Physical addresses
- Social Security numbers
- Dates of birth
- Phone numbers (mobile, home, and work)
- Email addresses
- Bank account numbers
- Account types and balances
- Transaction histories
- Stock orders
- Payee account information
- Statement histories
The number of affected individuals has not been disclosed.
HSBC USA launched an investigation in collaboration with federal agencies and third-party forensic teams. Investigators are currently analyzing attack logs to determine whether there was any breach.
Regulatory bodies, including the U.S. Department of the Treasury and the Federal Trade Commission, are monitoring the situation.
HSBC USA has urged all online banking customers to enable multi-factor authentication, which adds an extra layer of protection beyond passwords, and to change their passwords to unique, complex credentials to minimize risks of unauthorized access.
