Why read this story?
Editor's note: The past week has been nothing short of a cluster***k for MobiKwik and its users. While the fintech company maintains that its servers were never breached in what’s being claimed to be the biggest KYC (Know Your Customer) hack in India− even going so far as to indulge in victim-blaming− all signs point to a track record of obfuscation. Indeed, this isn’t the first time MobiKwik has been subject to glaring security goof-ups. The 2021 hack, however, is significant because of the quantum of personal data that’s available: PAN card and Aadhaar details, bank details, phone numbers, mugshots, and virtually everything that constitutes the digital identity of millions of Indians. The original hacker or group, or those affiliated with them, also have a Telegram group dedicated to scraping the personal details of MobiKwik users. But group admins took things a step further on the evening of 31 March, when they claimed to have breached Digilocker, an online vault provided by India’s Ministry of Electronics and Information Technology for Aadhaar users to store and access their important documents. Digilocker is also …
More in Internet
You may also like
India Inc reports bleak Q2 results on Tuesday
Losses widen for IndiGo and MobiKwik. Adani Enterprises and Indian Hotels Company see their profit dips.
What an email breach reveals about the risks of AI integrations
A single line of malicious code in a fake Postmark MCP connector, a tool built for AI assistants, leaked thousands of emails. What does that tell us about the limits of security in autonomous systems?
M2P Fintech’s road to rediscovery has hit a bump
Its biggest banking customer, Unity Small Finance Bank, has decided to part ways. The departure comes at a time when the fintech infrastructure startup has been trying to become a full-stack banking software provider.
