Void Hackers Claims Alleged Critical Exposure in Privat24

Executive Summary

Void Hackers claimed an alleged critical exposure in Privat24, the banking application linked to PrivatBank, stating that it obtained access to confidential user data through a vulnerability in the mobile client’s encryption architecture.

The claim is high-impact and should be treated with maximum caution. Based on the available information, there is no independent confirmation of the intrusion, the declared scope, or the technical existence of the mentioned vulnerability.

Even so, the message is relevant from an intelligence perspective because it presents a technical narrative focused on digital banking, local encryption, authorization tokens, device profiles, personal data, and possible account takeover. The actor appears to be projecting capability against a sensitive financial environment.

Key Judgments

• Void Hackers claims to have accessed confidential data from Privat24 users.
• The publication describes an alleged critical flaw linked to a static key used to protect sessions or local data.
• The declared impact includes extraction of active tokens, device identifiers, system profiles, personal data, card numbers, and financial history.
• None of these elements should be considered confirmed without independent technical validation or an official response from the affected entity.

What Happened

Void Hackers published a message claiming that its specialists obtained full access to confidential user data in the Privat24 banking application.

According to the publication, access was made possible through a critical vulnerability in the encryption architecture. The actor claims that, during analysis of the mobile client, a hidden static key was identified, common to all installations and used to protect sessions.

Based on that alleged flaw, Void Hackers claims it was able to decrypt local storage, extract active authorization tokens, unique device identifiers, and system profiles. It also claims this would allow bypassing two-factor authentication and taking control of accounts, with access to personal information, card numbers, and financial history.

Operational Assessment

The technical narrative presented by Void Hackers is sensitive because it points to an especially serious category of impact: digital banking, financial data, session tokens, and possible account takeover.

However, the message should be treated as an unconfirmed claim. At this stage, there is no technical sample, verifiable public proof, independent confirmation, third-party analysis, or official communication validating the existence of the vulnerability or the scope described.

Intelligence Significance

The immediate value of this publication lies in the targeting signal and in the type of narrative used. Void Hackers does not limit itself to claiming a generic disruption or exposure; it describes an alleged cryptographic weakness and links it to access to users’ banking data.

That choice of narrative may serve several functions: reputational pressure against the affected entity, visibility within the hacktivist ecosystem, demonstration of technical capability to allies or audience, and possible intimidation of end users.

In the context of its announced alliance with AlfaNet, this publication may also serve as a technical calling card for Void Hackers. It does not confirm cooperation between both actors in this case, but it does show the type of activity Void Hackers may be trying to project.

Analytical Closing

Void Hackers’ claim regarding Privat24 should be treated as a high-impact assertion pending validation. Its relevance is not only in the mentioned target, but in the technical narrative chosen: local encryption, active tokens, financial data, and possible account takeover. Until independent evidence is available, the most prudent reading is to observe the case as a signal of attributed activity against digital banking, with potential reputational impact and a need for close monitoring.