There is growing concern among customers of Nigeria’s banking giant, GTBank, after reports emerged that suspected cybercriminals have compromised the bank’s domain address in a massive phishing operation. According to a report by Peoples Gazette, attempts to log on to the bank’s official website, www.gtbank.com, returned error messages as of 10:30 PM on Wednesday.
The incident occurred just a day after the domain name was renewed for another five years, from August 13, 2024, through March 21, 2029, according to several online platforms that analyze domain information. Despite the ongoing situation, no group of hackers has claimed responsibility for the attack, which reportedly began on August 14. A GTBank spokesperson did not immediately respond to requests for comments.
It appears that the hackers have created an alternative HTTP layer of the website in a sophisticated phishing scheme aimed at stealing customers’ data. A cybersecurity expert with experience in the Nigerian banking industry suggested that the bank’s login details might have been compromised, rather than the domain address itself being stolen for resale at a higher value.
GTBank customers have taken to social media platform X to express their frustration, as many have been unable to access the website to conduct transactions. Bank representatives on X have urged customers to be patient and directed them to alternative channels for assistance.
Despite the website issues, the bank’s mobile applications on Android and iOS platforms remain operational, allowing customers to continue banking activities through these channels.
GTBank, one of Nigeria’s largest financial institutions, serves millions of customers across Nigeria and other African countries. The current situation has raised significant concerns about cybersecurity and the safety of customer data within the Nigerian banking sector.
