...
...
Next Story

MobiKwik says it is probing data breach claims

A website on the dark web claimed it had 8.2 terabytes of user data, including 99 million records containing a user’s sign-up details and information about any payment cards a saved.

Published on: Mar 31, 2021 01:40 AM IST
Advertisement

Personal information of close to 100 million users of payments app MobiKwik has purportedly been stolen and put up for sale on the dark web, prompting the company to announce that it will bring in an independent security auditor, although it said it was “confident” that its security had not been breached.

The person who gained access to this data said they are offering “exclusive” sale of the information for 1.5 bitcoins. (Representational image)
The person who gained access to this data said they are offering “exclusive” sale of the information for 1.5 bitcoins. (Representational image)

Over the weekend, a website on the dark web – the part of the internet not indexed by search engines and, hence, harder to access – claimed it had 8.2 terabytes of user data, including 99 million records containing a user’s sign-up details (including username, GPS location) and information about any payment cards a user may have saved.

The website was accessed by several people who reported on social media that they could see their account details on it. HT corroborated some of this information before the site went offline. “There were rumours about the breach in early March. On March 27, the public sale was posted on a popular forum,” said Yash Kadakia, founder of Security Brigade, describing the seller’s decision to create a portal for people to sift through the data as unusual.

The person who gained access to this data said they are offering “exclusive” sale of the information for 1.5 bitcoins.

 
SHARE THIS ARTICLE ON