Active Stocks
Thu Apr 18 2024 15:59:07
  1. Tata Steel share price
  2. 160.00 -0.03%
  1. Power Grid Corporation Of India share price
  2. 280.20 2.13%
  1. NTPC share price
  2. 351.40 -2.19%
  1. Infosys share price
  2. 1,420.55 0.41%
  1. Wipro share price
  2. 444.30 -0.96%
Business News/ Companies / News/  Forensic audit didn’t reveal any unauthorized access to customer data: Mobikwik
BackBack

Forensic audit didn’t reveal any unauthorized access to customer data: Mobikwik

Swaraj Singh Dhanjal

Mobikwik said the forensic audit expert reported that based on the analysis of logs/data provided to them, there was no unauthorised access from outside of the company’s infrastructure or internally to the database server wherein customer data is stored

MobiKwik co-founder Upasana Taku. Photo: MintPremium
MobiKwik co-founder Upasana Taku. Photo: Mint

Payments firm One Mobikwik Systems Ltd on Monday, in its draft IPO prospectus, said that a forensic audit conducted by an independent expert did not reveal any unauthorized access to its customer database in March.

The alleged data breach came to light in March after unknown actors claimed they were selling Mobikwik’s data on the dark web and that this included 99 million mail IDs and phone numbers, data of 40 million saved debit and credit cards as well as know-your-customer (KYC) logs of 3.5 million users.

The Gurugram-based digital payments firm had denied that it suffered such a data breach.

“...in March 2021, certain media reports alleged an unauthorised breach of our data security systems and gaining wrongful access to personal and financial data of our users. Following such media reports, we engaged an independent digital forensic audit expert to conduct an audit relating to these allegations," the company said in its DRHP.

“The forensic audit expert subsequently reported that based on the analysis of logs/ data provided to them, there was no unauthorised access from outside of our Company’s infrastructure or internally to the database server wherein customer data is stored, during the review period," it said.

“The report however states certain limitations to the processes undertaken, including virtual walk-through of our systems, not analysing employee devices and that the review was based on logs made available by us and certain non-mandatory logs were not available for the audit. In addition to the recent incident, in 2010, when we were operating at a relatively smaller scale, a hacker had gained unauthorized access to our operating systems, which resulted in certain disruption in our operations," the prospectus said.

Unlock a world of Benefits! From insightful newsletters to real-time stock tracking, breaking news and a personalized newsfeed – it's all here, just a click away! Login Now!

ABOUT THE AUTHOR
Swaraj Singh Dhanjal
" Based in Mumbai, Swaraj Singh Dhanjal is responsible for Mint’s corporate news coverage. For the past eight years he has been writing on the biggest deals in private equity, venture capital, IPO market and corporate mergers and acquisitions. An engineer and an MBA, he started his journalism career in 2014 with Mint. "
Catch all the Corporate news and Updates on Live Mint. Download The Mint News App to get Daily Market Updates & Live Business News.
More Less
Published: 12 Jul 2021, 09:40 PM IST
Next Story footLogo
Recommended For You

Wait for it…

Log in to our website to save your bookmarks. It'll just take a moment.

Yes, Continue

You are just one step away from creating your watchlist!

Login Now

Wait for it…

Oops! Looks like you have exceeded the limit to bookmark the image. Remove some to bookmark this image.

Your session has expired, please login again.

Yes, Continue
Switch to the Mint app for fast and personalized news - Get App