More than 10 crores Indian‘s credit-debit card data has been hacked and sold for an undisclosed amount on the dark web as reported by Independent cybersecurity researcher Rajshekhar Rajaharia. He has disclosed this on his Twitter account on Sunday.
Editor’s Pick | Beware of increasing WhatsApp OTP scam | How to prevent it?
Follow us on Twitter and Telegram.
According to Rajshekar, massive credit-debit cards data has been leaked from the compromised server of Bengaluru based digital payments gateway JusPay. However, the JusPay claimed that no data or financial information were leaked during the cyber attack. They also said that on August 18 2020, a malicious attempt on our servers was detected and terminated immediately when in progress.
According to Rajshekhar, PCI DSS (Payment Card Industry Data Security Standard) have been followed by JusPay in storing users’ credit-debit card information. However, if the hackers can find out the Hash algorithm used to generate the card fingerprint, they will be able to decrypt the masked card number. In this condition, all 10 crores cardholders are at risk.
The company admitted that the hacker gained access to one of JusPay’s developer keys and was spawning new computation servers in the developer account, trying to gain access to any accessible data.
Up Next |
The JusPay spokesperson also confirmed that no card numbers (like 16-digit card number and other financial credentials) were accessed, as it is stored in a completely different isolated system. No transaction or order information was compromised.
7 comments
Comments are closed.