3.4 million accounts were compromised during 2020 Mall ‘hack’; Paytm denies

Digital payment app Paytm has said no accounts were compromised during the August 2020 Mall hack, this after the creator of the website ‘Have I Been Pwned’ retracted his claim.

The claim pertains to an incident which took place almost two years ago when Paytm Mall – Paytm's ecommerce marketplace wing – was reportedly hacked.

A report had cited figures made available by Have I Been Pwned, a website that allows internet users to check whether their personal details were leaked during data breaches.

“New breach: Indian payment provider Paytm was reported breached in Aug 2020. Data covered 3.4M unique email addresses along with names, phone numbers, genders, dates of birth, income levels and previous purchases. 77% were already in @haveibeenpwned,” the Troy Hunt-created website shared on Twitter.

The data compromised includes unique email addresses along with names, phone numbers, genders, dates of birth, income levels and previous purchases, the report had noted.

Were you among those whose details were leaked?

Mozilla's Firefox Monitor, which informs users if their email addresses and passwords were leaked during a breach, had provided a link on which you can enter your email ID and/or phone number to find out if your personal information, too, was circulated.

Separately, you can also use the haveibeenpwned link.

Paytm denies hack

Paytm has denied that the accounts were compromised during the hack. “The data of our users is completely safe and claims related to data leak in the year 2020 are completely false and unsubstantiated. A fake dump uploaded on the platform haveibeenpwned.com appears to wrongly alert of a data breach on Firefox. We are in touch with Firefox and the platform to resolve the matter," the company said.