Massive ransomware attack on Paytm Mall
By MYBRANDBOOK
Paytm group suffers a massive data breach - paytm mall hacked and ransom demanded, the cybercrime group demanded ransom after gaining unrestricted access to the entire databases of Paytm Mall, although the e-commerce platform denied the claims.
The cybercrime group with the alias "John Wick" was able to upload a backdoor/Adminer on Paytm Mall application/website, said Cyble. A Paytm Mall spokesperson, however, said that the claims are "absolutely false" and that user data, as well as company data, is secure.
As per the sources, John Wick” is the same notorious group or actor who broke into multiple India companies, and collected ransoms from various organizations. The actor has other aliases such as “South Korea”, “HCKINDIA”. One of the tactics used by this group is “to act” as a grey-hat hacker and offer help to companies or victims to fix their bugs.
“We have noted and investigated the claims of a possible hack and data breach, and these are absolutely false. We invest heavily in our data security, as you would expect. We also have a Bug Bounty program, under which we reward responsible disclosure of any security risks. We extensively work with the security research community and safely resolve security anomalies,” a Paytm Mall spokesperson said.
Cyble said that the breach appears to have affected all accounts and related information at Paytm mall, it added.
According to Wikipedia: “In February 2017, Paytm launched its Paytm Mall app, which allows consumers to shop from 140,000 registered sellers. Paytm Mall is a B2C model inspired by China’s largest B2C retail platform TMall. Sellers have to pass through Paytm-certified warehouses and channels to ensure consumer trust. Paytm Mall has set up 17 fulfilment centres across India and partnered with more than 40 couriers. Paytm Mall raised $200 million from Alibaba Group and SAIF Partners in March 2018.
Now a question mark is on if there any hacking to the data of registered sellers, it would attract penalty up to Rs.5 Crore. However, the terms and conditions are apply. According to an online report from 2018, it has over 5.5 Million daily active users, 80,000 sellers and a product portfolio of 110 million items.
A question is on how to save the Registered partners and persons using various apps related to the Financial transactions. Seems the app providers like Android and IOS are not responsible for any data loss. As it is a matter of fact is citizens and enterprises are suffering from this type of data breach, which is a huge loss to the economy during this crisis time of COVID-19.
An expert says, the Government of India and MeitY, can make a platform ready before any App( Where there is Financial transactions to take place) to operate in the country, it has to get the clearance in terms of all the security has been rightly implemented.
Paytm is backed by some of world’s leading VC funds such as Ant Financials, Softbank Vision Fund, SAIF Partners, Alibaba Group, Berkshire Hathway and many others and leaking data when failing to meet hackers demands is a known technique deployed by various cybercrime groups, including ransomware operators, the online intelligence firm said.
Singapore to remove One-Time Passwords from Bank Accounts
According to the Monetary Authority of Singapore, clients who utilise secur...
Is 375 million Airtel subscribers database breached?
When a hacker claims to have accessed and put up for sale a customer databa...
The government of India intends to construct a single portal f
A single portal will be launched by the Indian government to list all of it...
OpenAI offers GPT-4o, a faster model available to all users at
GPT-4o, a faster and more sophisticated AI model, is made available to all...
ICONS OF INDIA : S KRISHNAN
S Krishnan as the secretary for the electronics and information techno...
Icons Of India : Bhavish Aggarwal
Indian entrepreneur Bhavish Aggarwal is the CEO of Ola, India’s larg...
ICONS OF INDIA : ROSHNI NADAR MALHOTRA
Roshni Nadar Malhotra is the Chairperson of HCLTech, a leading global ...
EESL - Energy Efficiency Services Limited
EESL is uniquely positioned in India’s energy sector to address ener...
GeM - Government e Marketplace
GeM is to facilitate the procurement of goods and services by various ...
BSE - Bombay Stock Exchange
The Bombay Stock Exchange (BSE) is one of India’s largest and oldest...
Indian Tech Talent Excelling The Tech World - ANJALI SUD, CEO – Tubi
Anjali Sud, the former CEO of Vimeo, now leads Tubi, Fox Corporation...
Indian Tech Talent Excelling The Tech World - JAYASHREE ULLAL, President and CEO - Arista Network
Jayshree V. Ullal is a British-American billionaire businesswoman, ser...
Indian Tech Talent Excelling The Tech World - George Kurian, CEO, Netapp
George Kurian, the CEO of global data storage and management services ...