Online search giant Groupon's Indian subsidiary -- SoSasta -- accidentally published the email addresses and passwords of its 3 lakh subscribers last weekend, but has taken corrective measures and said that the issue has been brought under control.
The online discount portal SoSasta.com, alerted its subscribers about the security issue and asked them to change their passwords immediately.
SoSasta.com, which was acquired by Groupon in January this year, said that none of the financial information such as credit card, debit card, netbanking has been compromised since this information is not stored on SoSasta, as per law.
The discount portal said, "we are working aggressively to prevent this from happening again. SaSasta takes security and privacy very seriously -- it is important to us to provide you with a safe shopping experience of the highest quality, and we will do everything possible to keep your trust."
The data leak was discovered by an Australian security consultant Daniel Grzelak as he searched for publicly accessible databases containing e-mail address and password pairs.
Grzelak is the creater of shouldichangemypassword.com, a website that allows any internet user to search a database of known-compromised e-mail address and password pairs to see if their password has been compromised.