MobiKwik is an Indian company that provides an app-based payment system and digital wallet. Customers can add money to a wallet that can be used for payments. The Reserve Bank of India has authorized the company’s use of the MobiKwik wallet and also provides small loans to consumers. The customers need to provide Aadhar & PAN details to get registered for wallet and now those data are up for sale in Darkweb which also includes sensitive data. The company has failed to protect its user’s data for the second time.
Best Smartphones Under 20000 in India
Follow us on Twitter and Telegram
These leaks were first reported by Rajshekhar Rajaharia, which was later denied by the company. However, a link was circulating online which includes all user data and several MobiKwik customers have confirmed their data in the list. people also started posting the screenshot of leaked MobiKwik user data which were on sale for 1.5 bitcoin approx INR 6,462,928.
French hacker Robert Baptiste, who goes by the pseudonym Elliot Alderson on Twitter, said that it is the largest KYC data leak in history.
Even though the passwords appear encrypted in the data, all the other details like PAN card, Aadhar card, etc have not been masked. This information is more than enough for hackers and fraudsters.
A spokesperson from MobiKwik, “We thoroughly investigated and did not find any security lapses. Our user and company data is completely safe and secure”.
However, it is our responsibility to keep our account secure by frequently changing the passwords.
Follow us on Twitter and Telegram