Active Stocks
Thu Mar 28 2024 15:59:33
  1. Tata Steel share price
  2. 155.90 2.00%
  1. ICICI Bank share price
  2. 1,095.75 1.08%
  1. HDFC Bank share price
  2. 1,448.20 0.52%
  1. ITC share price
  2. 428.55 0.13%
  1. Power Grid Corporation Of India share price
  2. 277.05 2.21%
Business News/ Companies / News/  Mobikwik lands in trouble over reaction to possible data leak
BackBack

Mobikwik lands in trouble over reaction to possible data leak

A researcher said data of 11 crore Indians, which included information from KYC (Know-Your-Customer) forms, unmasked card numbers and other personal details, had been leaked from a Mobikwik server

Payments app Mobikwik is facing backlash from users after the company allegedly tried to ignore a possible data leak. (Photo: Mint)Premium
Payments app Mobikwik is facing backlash from users after the company allegedly tried to ignore a possible data leak. (Photo: Mint)

NEW DELHI: Payments app Mobikwik is facing backlash from users after the company allegedly tried to ignore a possible data leak. It all began late last month, when security research Rajshekhar Rajaharia exposed the data leak on Twitter. The researcher said data of 11 crore Indians, which included information from KYC (Know-Your-Customer) forms, unmasked card numbers and other personal details, had been leaked from a Mobikwik server. The researcher named Mobikwik in a series of tweets, adding that hacker(s) had access to the company’s data since January 2021.

However, Mobikwik denied the leak via a tweet on March 4. “A media-crazed so-called security researcher has repeatedly over the last week presented concocted files wasting precious time of our organisation while desperately trying to grab media attention. We thoroughly investigated his allegations and did not find any security lapses," the company said in its tweet. The company also said it will be pursuing “strict action" against the researcher and claimed that the data he showed proved nothing.

This though, may have been false, as other security researchers started jumping in with their thoughts. On March 29, prolific security researcher Robert Baptiste (who goes by Elliot Alderson on Twitter) confirmed the leak, crediting a third security researcher for the tip. Alderson said this was probably the “largest KYC leak in history".

Alderson’s tweet was followed by many others, who criticized Mobikwik for its reaction to the leaks. “The MobiKwik leak is real. Here is what the dump had for me. One of those credit cards was valid until a couple weeks ago, and I don't recall authorising MobiKwik to save it. Companies that lie like (this) ought to be taken to the cleaners," wrote Kiran Jonalaggada, founder of HasGeek in a tweet.

Australian security consultant Troy Hunt, who created the website haveIbeenpwned.com, also called the company out for its reaction. “Never *ever* behave like @MobiKwik has in this thread from 25 days ago. Try Googling “mobikwik data breach" now," said Hunt.

Unlock a world of Benefits! From insightful newsletters to real-time stock tracking, breaking news and a personalized newsfeed – it's all here, just a click away! Login Now!

ABOUT THE AUTHOR
Prasid Banerjee
An engineering dropout, Prasid Banerjee has reported on technology in India for various publications. He reports on technology through text and audio, focusing on its core aspects, like consumer impact, policy and the future.
Catch all the Corporate news and Updates on Live Mint. Download The Mint News App to get Daily Market Updates & Live Business News.
More Less
Published: 30 Mar 2021, 10:47 AM IST
Next Story footLogo
Recommended For You
Switch to the Mint app for fast and personalized news - Get App