Poll: Do you agree that a Data Protection Law is must for India?
6 days left

Hot Deal Has Mobikwik suffered one of the biggest data breaches ever in India?

5515°
Kolkata Knight Riders
100
8559
120

Hello,

I was just browsing casually when something really surprising caught my attention.

From multiple sources, it seems that Mobikwik has allegedly suffered the biggest data breach ever flushed flushed

The data breach leaks information like :-

1. Mobikwik Account Phone Numbers
2. Your full name
3. Your KYC documents like PAN & Aadhaar
4. E-mail addresses
5. Hashed passwords
6.Debit/Credit Card details
7.Your GPS location
8. Phone model details including IMEI
9. Other apps in your system.

Looks like Mobikwik hasn’t come up with any official clarification regarding this. If true this will be the biggest data breach ever and will be catastrophic confused


IMG-20210329-141532
Multiple sources have this news like:-

1.
https://mobile.twitter.com/XploitWizer/status/1...

2. https://www.databreaches.net/in-threat-actor-of...

3. https://mobile.twitter.com/fs0c131y/status/1376...

Please note that this is unverified as Mobikwik has not issued any official clarification and also this information is available on other public websites where it was originally posted and I also hope it’s not true however it certainly raises a question on Indian companies and if at all they are trying to safeguard our data.

A data protection law is must for India these days grin

Deal Wiki

Disclaimer :- Please note that this is unverified information. I’m not criticizing Mobikwik directly in any way. This post is just for awareness and discussion. I personally love Mobikwik offers very much. However by historical trends every company has refused to accept any data breach information at first instance. These information regarding the alleged breach are available publicly in websites with links given we are just discussing about it here

Check it out – detailed news

https://hindi.thequint.com/tech-and-auto/cyber-...

567 Comments  |  
170 Dimers
  • Sort By
50
295
3

agar yeh baat sahi bhi hoyi to bhi Indian users kuch nahi kar sakte

100
8559
120
kukdookoo wrote:

agar yeh baat sahi bhi hoyi to bhi Indian users kuch nahi kar sakte

True but we should start demanding Data Protection Laws now. So many controversial laws getting passed however this law is something we need these days.

Mobikwik has a lot of caps and restrictions on supercash usage unless we aren’t full KYC so definitely they have a lot of full KYC customers wink

51
104
4

It is true. It is showing my account name and IFSC code.

My saved credit cards.

100
8559
120
teragoel wrote:

It is true. It is showing my account name and IFSC code.

My saved credit cards.

Were you able to check? flushed

9
2223
23

Forget data breach, what business this mobidick has in keeping record of other apps in our system?! angry

51
104
4
Expand
Gaurav_G wrote:

Were you able to check? flushed

Yes.

The Twitter shared the link where in you can enter your number it shows everything.

9
2223
23
Expand
teragoel wrote:

Yes.

The Twitter shared the link where in you can enter your number it shows everything.

Can you pm the link. Want to check whether my details are also compromised?

193
6942
37
Expand
drsa478 wrote:

Can you pm the link. Want to check whether my details are also compromised?

+1

125
1237
17

Kindly post the link for it so tht every1 can b aware

51
104
4
Expand
drsa478 wrote:

Can you pm the link. Want to check whether my details are also compromised?

Can’t share the link. DM me the number or email I can check and tell.

100
8559
120
Expand
teragoel wrote:

Can’t share the link. DM me the number or email I can check and tell.

I think it’s better also not to share.

We want to make sure/feel safe by checking if our name is among the part of the leak or not by entering our own details however every people may not have the same intention.

They may misuse the leak to gather details about other people. So better not share it smile

129
10323
125

Good that you added deal wiki.
@AyushiiiVijay Apki tippani ispe?
T – Your views on this one.

129
10323
125
Expand
drsa478 wrote:

Can you pm the link. Want to check whether my details are also compromised?

+1
@teragoel Please share this with me as well.

2,110
8268
82
Moderator

Kal hi dekha tha twitter pe.. same to same. smile

Pending verification.. stuck_out_tongue

PS: Proud mini KYC user.. @ AnkitFaddiya

2,110
8268
82
Moderator

Guys, maybe this news is true.. but it’s as foolish to check your details in *any provided link by putting your MK credentials. You can be hacked for real! Remember..

100
8559
120

@teragoel is 100% correct however I request him or anyone to not share link anywhere.

It’s 100% true. I’m not feeling good after seeing this wink

9
2223
23
Expand
Gaurav_G wrote:

I think it’s better also not to share.

We want to make sure/feel safe by checking if our name is among the part of the leak or not by entering our own details however every people may not have the same intention.

They may misuse the leak to gather details about other people. So better not share it smile

Those people will already be having the link. What do you think this data was leaked for, If at all it has been leaked?

100
8559
120
Expand
drsa478 wrote:

Those people will already be having the link. What do you think this data was leaked for, If at all it has been leaked?

I entered just my number I could see everything from name saved cards banks to account creation date

214
4576
34
teragoel wrote:

It is true. It is showing my account name and IFSC code.

My saved credit cards.

Does blocked mk account details also shows? I wish to know with which name and mail id my mk account was created 5 years ago 🙈

51
104
4
Expand
drsa478 wrote:

Those people will already be having the link. What do you think this data was leaked for, If at all it has been leaked?

Fact of thr matter is your details are leaked.

It showed the data which I removed from mobi long back.

My advice disable international txns on the cards you used in.mobi or better

Hotlist the cards. Can’t do anything more than that.

If you used the same password for email client and mobi change that as well

Isse zyada aur kuch nahin kar sakte.

Jo hona tha woh ho gaya aap bharosa karo ya mat karo.

832
66741
650
Expand
Gaurav_G wrote:

I entered just my number I could see everything from name saved cards banks to account creation date

Saved cards masked or full?

51
104
4
Expand
avgn wrote:

Saved cards masked or full?

The link is most probably shared by the hacker as a proof to mobi that he has all the details.

He has hidden the middle numbers of card.

He has also hidden CVV and expiry.

It’s a classic tease stuck_out_tongue_closed_eyes

832
66741
650
Expand
teragoel wrote:

The link is most probably shared by the hacker as a proof to mobi that he has all the details.

He has hidden the middle numbers of card.

He has also hidden CVV and expiry.

It’s a classic tease stuck_out_tongue_closed_eyes

I meant are the card details which are visible – are they full details or masked

51
104
4
Expand
avgn wrote:

I meant are the card details which are visible – are they full details or masked

The link shoes us masked details . Don’t know how the mobi guys used to save ..

100
8559
120
Expand
avgn wrote:

Saved cards masked or full?

Masked

9
2223
23

MobiXicK’s official statement

A media-crazed so-called security researcher has repeatedly over the last week presented concocted files wasting precious time of our organization while desperately trying to grab media attention.We thoroughly investigated his allegations and did not find any security lapses.
Our user and company data is completely safe and secure.
The various sample text files that he has been showcasing prove nothing. Anyone can create such text files to falsely harass any company.
Finally, our legal team will be pursuing strict action against this so-called researcher who is trying to malign our brand reputation for ulterior motives.
-Team MobiKwik

832
66741
650
Expand
Gaurav_G wrote:

Masked

So that part is secured somewhat right?

Only concern is aadhaar, pan?

346
9633
42
Expand
avgn wrote:

So that part is secured somewhat right?

Only concern is aadhaar, pan?

What about upi..

2,110
8268
82
Moderator
drsa478 wrote:

MobiXicK’s official statement

A media-crazed so-called security researcher has repeatedly over the last week presented concocted files wasting precious time of our organization while desperately trying to grab media attention.We thoroughly investigated his allegations and did not find any security lapses.
Our user and company data is completely safe and secure.
The various sample text files that he has been showcasing prove nothing. Anyone can create such text files to falsely harass any company.
Finally, our legal team will be pursuing strict action against this so-called researcher who is trying to malign our brand reputation for ulterior motives.
-Team MobiKwik

Expected! expressionless

Missing