SberSpasibo

On March 9 2023 the threat actor group known as NLB leaked a database allegedly belonging to the SberSpasibo loyalty program operated by Sberbank. The incident involved the exposure of millions of records containing personal details of customers participating in the bonus program. The breach occurred as part of a series of cyberattacks targeting major Russian financial and retail entities during early 2023. The data was distributed via specialized telegram channels and darknet forums highlighting vulnerabilities in secondary service platforms connected to large banking infrastructures.