Massive China UnionPay Data Breach Exposes 171 Million Records on Dark Web
A threat actor is offering a database allegedly containing 171 million records from China UnionPay, the state-owned financial services giant and backbone of China’s payment infrastructure, on a hacker forum. The breach, if confirmed, would rank as a national security crisis, exposing sensitive financial and personal data on an unprecedented scale.
The stolen dataset reportedly includes:
- Customer PII and national IDs: Full names, phone numbers, and potentially national ID numbers.
- Financial information: Bank card numbers (partial or full), linked accounts, and transaction histories.
- 171 million unique records, with the seller claiming duplicates have been removed.
The sale is being conducted with professional criminal tactics, including escrow services and Telegram negotiations, signaling high confidence in the data’s authenticity. Such a breach could enable large-scale fraud, phishing, and identity theft, with criminals leveraging the stolen information to impersonate UnionPay, banks, or government agencies in sophisticated scams.
China UnionPay, equivalent to Visa or Mastercard in China’s financial ecosystem, plays a critical role in the country’s payment infrastructure. A compromise of this magnitude threatens financial stability, requiring urgent intervention from Chinese authorities to validate the breach, trace its origin, and disrupt the sale. Financial institutions have been urged to enhance fraud detection systems to mitigate potential fallout, while citizens face heightened risks of targeted scams.
The incident underscores the severe implications of breaches in foundational financial systems, with the potential for widespread economic and security repercussions.
China UnionPay cybersecurity rating report: https://www.rankiteo.com/company/china-unionpay
"id": "CHI1768664464",
"linkid": "china-unionpay",
"type": "Breach",
"date": "8/2025",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"{'affected_entities': [{'customers_affected': '171 million',
'industry': 'Payment Infrastructure',
'location': 'China',
'name': 'China UnionPay',
'type': 'Financial Services'}],
'customer_advisories': 'Citizens face heightened risks of targeted scams',
'data_breach': {'data_exfiltration': True,
'number_of_records_exposed': '171 million',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Customer PII',
'National IDs',
'Bank card numbers',
'Linked accounts',
'Transaction histories']},
'description': 'A threat actor is offering a database allegedly containing '
'171 million records from China UnionPay, the state-owned '
'financial services giant and backbone of China’s payment '
'infrastructure, on a hacker forum. The breach, if confirmed, '
'would rank as a national security crisis, exposing sensitive '
'financial and personal data on an unprecedented scale. The '
'stolen dataset reportedly includes customer PII, national '
'IDs, bank card numbers, linked accounts, and transaction '
'histories. The sale is being conducted with professional '
'criminal tactics, signaling high confidence in the data’s '
'authenticity. Such a breach could enable large-scale fraud, '
'phishing, and identity theft.',
'impact': {'brand_reputation_impact': 'Severe',
'data_compromised': '171 million records',
'identity_theft_risk': 'High',
'operational_impact': 'Threat to financial stability',
'payment_information_risk': 'High'},
'initial_access_broker': {'data_sold_on_dark_web': True},
'motivation': 'Financial Gain',
'recommendations': 'Enhance fraud detection systems to mitigate potential '
'fallout',
'references': [{'source': 'Hacker Forum'}],
'response': {'enhanced_monitoring': 'Urged for financial institutions'},
'stakeholder_advisories': 'Financial institutions urged to enhance fraud '
'detection systems',
'title': 'Massive China UnionPay Data Breach Exposes 171 Million Records on '
'Dark Web',
'type': 'Data Breach'}