Qatar National Bank
Overview
On July 1, 2015, Qatar National Bank was breached. Once the breach was discovered and verified, it was added to our database on May 1, 2016.
Why did it take so long to report this breach?
What data was compromised:
- Government issued IDs
- Passwords
- Bank account numbers
- IP addresses
- Security questions and answers
- Phone numbers
- Dates of birth
- PINs
- Physical addresses
- Customer feedback, Financial transactions, Genders, Geographic locations, Marital statuses, Names, Spoken languages
Find out if you were involved in this breach
We’ll help you quickly see if your email address was exposed in this breach, and understand what to do next.What to do for this breach
We recommend you take these steps to keep your personal info safe and protect your digital identity.
- Change your password
Make this password unique and different from any others you use. A good strategy to follow is to combine two or more unrelated words to create an entire passphrase, and include numbers and symbols.
- Update other logins using the same password
Reusing passwords turns a single data breach into many. Now that this password is out there, hackers could use it to get in to other accounts.
- Monitor your bank statements
Check your bank statements for suspicious activity or unusual charges. Notify your bank if you see anything you don’t recognize
- Use a VPN to mask your IP address
Your Internet Protocol address (IP address) pinpoints your location and internet service provider. A service like Mozilla VPN masks your IP address to hide your location.
Try Mozilla VPN- Create unique answers for security questions
Many websites ask the same questions. If one answer gets exposed, the information is out. Create long, random answers and store them somewhere safe.
- Avoid sharing your phone number
Try to avoid giving out your phone number when signing up for new accounts or services. If a phone number isn’t required, don’t enter it.
- Avoid using personal info in PINs
Because your date of birth is easy to find in public records, it’s best to avoid using it in passwords and PINs. People who know your birthday could also very easily guess your PIN.
- Strengthen the security of your PINs
A strong PIN does not contain personal info, such as your date of birth or address. It should be a number only you know and can’t be easily guessed.
- Avoid using addresses in passwords
Using addresses or the street where you grew up weaken your passwords. Since it’s easy to find this info publicly, it makes these passwords easy to guess.
- Use unique, strong passwords for every account
Password reuse puts all your accounts at risk. This means that if one password gets exposed, hackers have the keys to many accounts.
- Store passwords in a safe place
Put your login details in a secure place only you can access, such as a password manager. This also makes it easy to keep track of all your different passwords.
- Be cautious about giving out personal information
Don’t hand out personal data if you don’t have to. If you are asked to enter or give out your email address, ZIP code, or phone number, you can say no.
- Update software and apps regularly
Updating your smartphone apps, browsers, and operating systems makes your devices more secure. These updates fix bugs, software vulnerabilities, and security problems.
What is a website breach?
A website data breach happens when cyber criminals steal, copy, or expose personal information from online accounts. It’s usually a result of hackers finding a weak spot in the website’s security. Breaches can also happen when account information gets leaked by accident.
Why did it take so long to report this breach?
It can sometimes take months or years for credentials exposed in a data breach to appear on the dark web. Breaches get added to our database as soon as they have been discovered and verified.