Gref spoke about the search for the perpetrator of the leak of customer data

He said that “already on October 2 in the evening, when the information appeared, they understood that there was a leak” from the bank’s systems.

Gref explained that the services involved in cybersecurity are divided into two parts: the bank’s internal service, which is “involved in ensuring the security of the bank’s circuit,” and Sberbank’s subsidiary Bi.Zone, which is engaged in the functions of “Internet intelligence and the so-called white hacking.”

“We caught the ad, and the offender made contact with our employee. He did not suspect that this is our employee, but we asked him questions, on these issues it was clear that he was a bank employee, and the leak that occurred was an internal leak, ”the head of Sberbank said.

After, according to him, the bank “began to actively work out all possible scenarios of this leak.”

“A circle was defined: first 35 people, then four people ... By two in the morning, we realized that these were two people who were most suspicious,” concluded Gref.

Earlier it was reported that in Sberbank during the investigation of the leak of client data, an attacker was identified who tried to steal the information. He turned out to be the head of the sector in one of the bank's business units, he had already given confession statements.

Expert Garegin Tosunyan, in an interview with NSN, assessed the consequences of leakage of data from banking clients.