Bigbasket faces data breach, details of 2 crore users being sold on dark web

Bigbasket faces data breach, details of 2 crore users being sold on dark web
Bigbasket faces data breach, details of 2 crore users being sold on dark web (Representative Image)

Cyber intelligence firm, Cyble has claimed that the popular online grocery platform BigBasket has faced a potential data breach that could have leaked details of its around 2 crore users. To confirm the claim made by Cyble, BigBasket has filed a complaint with the Cyber Crime Cell in Bengaluru. Also Read: Finally! WhatsApp Pay now available for users in India, Here’s how you can use it

In the claim made by Cyble, information of nearly two crore users has been jeopardized as of October 30. And the users’ data which has put on sale includes names, email IDs, password hashes, contact numbers, addresses, date of birth, location and IP addresses. Also, it added that a hacker has put users’ data allegedly belonging to BigBasket, on sale for around Rs 30 lakh.

In its blog, Cyble said, “In our routine dark web monitoring, our research team found the database of BigBasket for sale in a cybercrime market for USD 40,000. The leak contains a database portion with the table name ‘member_member’. The size of the SQL file is about 15 GB, which has close to 20 million users’ data.” Also Read: Know how to restore contacts in Google Contacts, if Deleted accidentally

When contacted, BigBasket spokesperson said, “A few days ago, we learned about a potential data breach at our users’ data. We are evaluating the extent of the breach and authenticity of the claim made by a cyber intelligence firm. We are doing a consultation with cybersecurity experts and finding immediate ways to contain it. Moreover, we have complained with the Cyber Crime Cell in Bengaluru and planned to continue this activity to bring the wrongdoer to book.”

According to BigBasket, it does not document users’ financial data. The company said, “The privacy and confidentiality of customers is our preference and we do not store any monetary data containing credit card numbers and are optimistic that users’ financial data is protected. The only customer data that we maintain are email IDs, phone numbers, order details, and addresses so these are the details that could probably have been accessed.” Also Read: Twitter Hacked: Accounts of high profile figures Obama and Bill Gates and others hacked using Social Engineering, Know the details

“We have a strong data security framework that requires best-in-class resources and technologies to regulate our data. We will continue to proactively engage with best data security experts to intensify this further, ” BigBasket stated.

Like Soochna on

Follow Soochna on

Read more on | For हिंदी News

Leave a Reply

Your email address will not be published. Required fields are marked *