Information of about 35 lakh Mobikwik users has been leaked

Have you ever made any kind of payment or money transaction through the Mobikwik app? If yes, then it may be that all your personal information from your bank details has been hacked. A hacker group has claimed that it has blown the data of about 10 crore Mobikwik users in the country. That is, all the information including your name, age, address, phone number, account details, Aadhaar card, and PAN card are available for sale in the cyber market. 


The company has issued its clarification regarding this matter. The Gurugram-based digital wallet company MobiKwik has denied the data breach case. It was being said that it was reported that the data of MobiKwik users has been leaked in large numbers. The company has said that no firm evidence has yet been found regarding the data breach.


What does the company say?


Digital wallet company MobiKwik has denied the data breach, claiming that no firm evidence has been found so far. The company said that it is very serious about its data security and it fully complies with all the security laws. It further says that given the seriousness of these allegations, it would conduct a forensic data security audit through a third party. 

Mobikwik's spokesperson says that the company is subject to all types of compliance measures. It includes PCI-DSS and ISO certifications. This includes annual security audits and quarterly penetration tests. Through these, the security of the platform can be protected. 

The organization tweeted, 'A self-proclaimed security researcher is repeatedly creating such fake files. They are doing nothing but wasting the company's time. The media is also wasting time. We have thoroughly researched the whole matter. We did not find any gap in security. The information of our users is completely protected.


What kind of data was leaked?


A researcher claimed in the report that a link was being circulated on Darkweb. This report states that this leaked data contains about 8.2 terabytes of user data of MobiKwik. It is being said that the information of the KYC of the users was included in this leaked data. This includes the user's address, phone number, Aadhaar card information, etc.

The data of this 8.2 terabyte size includes data of 3.5 million i.e. about 35 lakh users. It also stated that the regular keys and passwords should have been changed and the logs should have been monitored to prevent such security compromises.


How we got this information?


Hacker group Jordannevan claimed that they had blown up confidential information of about 10 crore Indian users of the payment app Mobikwik. He has also e-mailed the link to the database to the Indian news agency PTI. As evidence, the details of Mobikwik's founder Bipin Preet Singh and Mobikwik's CEO have also been shared. The group has stated that its intention is only to get money from the company, after which they will delete this data. Robert Baptiste, a French hacker, also tweeted that the Mobikwik company's data has been hacked. He has also provided information for the search engine that hackers created on the Dark Web.


Cybersecurity expert Rajshekhar Rajahariya brought these serious allegations against the company. He tweeted that the information of 11 crore Indians was in danger. He has also informed the Reserve Bank of India, the Indian Computer Emergency Response Team, PCI Standards, and Payment Technology Companies in writing.

Security researcher Rajasekhar Rajaharia shared the information about the data leaks of MobiKwik that took place in February. However, the company has completely denied this claim. The researcher shared a screenshot of the conversation with MobiKwik.


What does Mobikwik do?


You must have heard about apps like Google Pay, Phone Pay, Paytm. Mobikwik is also a similar payment app, which currently handles more than 1 million transactions daily. More than 30 lakh businessmen are connected with this app and its number of users is more than 12 crores. Through this app, phone recharge, bill submission, all kinds of payments, etc. are done. Sequoia Capital and Bajaj Finance Limited have also invested heavily in this Indian company Mobikwik.

2 comments:

  1. This is some serious allegation.. hopefully the company can prove it wrong.

    ReplyDelete
  2. Let's hope that all their money will remain safe and secured . Technology as we can see has it's own merits and demerits . More awareness must be created so that people must know what to do in these type of situations . Good job 💯

    ReplyDelete

Please don't enter any spam link in the comment box.