Has Mobikwik suffered one of the biggest data breaches ever in India?
- 29914
- 568
-
- Last Comment
Hello,
I was just browsing casually when something really surprising caught my attention.
From multiple sources, it seems that Mobikwik has allegedly suffered the biggest data breach ever 
The data breach leaks information like :-
1. Mobikwik Account Phone Numbers
2. Your full name
3. Your KYC documents like PAN & Aadhaar
4. E-mail addresses
5. Hashed passwords
6.Debit/Credit Card details
7.Your GPS location
8. Phone model details including IMEI
9. Other apps in your system.
Looks like Mobikwik hasn’t come up with any official clarification regarding this. If true this will be the biggest data breach ever and will be catastrophic 
Multiple sources have this news like:-
1.
https://mobile.twitter.com/XploitWizer/status/1...
2. https://www.databreaches.net/in-threat-actor-of...
3. https://mobile.twitter.com/fs0c131y/status/1376...
Please note that this is unverified as Mobikwik has not issued any official clarification and also this information is available on other public websites where it was originally posted and I also hope it’s not true however it certainly raises a question on Indian companies and if at all they are trying to safeguard our data.
A data protection law is must for India these days 
Deal Wiki
-
Last updated by: relwanivasudev473
Disclaimer :- Please note that this is unverified information. I’m not criticizing Mobikwik directly in any way. This post is just for awareness and discussion. I personally love Mobikwik offers very much. However by historical trends every company has refused to accept any data breach information at first instance. These information regarding the alleged breach are available publicly in websites with links given we are just discussing about it here
Check it out - detailed news
https://hindi.thequint.com/tech-and-auto/cyber-...
anyway to change the hsbc & amex card limits or disable the card for international usage?
Those needs to be called and disabled/changed I guess
Can someone share forum link where? it getting sold?
The GPS co-ordinates are accurate (1/3)
Not sure why.. for some accounts the GPS details are missing
Those who have Aadhar based e-KYC (older*) are a bit lucky ones (No PAN/Aadhaar + other personal details available 
)
They were all available till yesterday afternoon (maybe masked now). The hacker group should thank Gaurav bhai n DD, khalbali mach gayi darknet web mein.. 
Where u guys r searching…? All search links r not working right? Onion link is not opening
Download tor browser then open link
New Mobikwik deal: Get 100% Hacked on Account Opening. 😂👍🏼
Note: Also valid for existing users.😀👌
The deal started years back and still valid until Mobikwik shut down completely! 😡
Found My All Details In Darkweb…. 
🥺 
Unfortunately the possibilities are endless:-
1. The hacker claims to have acess to PAN Aadhaar photos and also selfies so he says he can obtain fake loans in our name
2. Bank details compromised
3. Cc/dc details compromised
4. Mobile/email compromised
5. Your location sometimes exact GPS co-ordinates compromised so they can pinpoint where you live
I can’t even finish writing this the consequences can be so many 
Nice how the government and Mobikwik both are silent.
Mr. Perfect!
Shows 0 result for all my numbers. Is this address even valid and not saving our number? (Phising)
http://mobikwikoonux37wauz6oqymshuvebj5u763rutl...
This is the huge data leak of aadhaar an pan card and this incompetent government is responsible for this mess
they are crying aadhar aadhaar aadhaar since they came to power now details of users is publicly available for misuse
I tried my 2 numbers but couldn’t find any info
Is anyone else facing the same thing or is the website not functioning properly
Or optimistically I’m out of the leak somehow
Server Is Down Now…
db_search taken down due to bots
If this leak is done by mobikwik , then mobikwik and it’s offers deserve a ban from desidime…so that no newbie will download this shit for such offers.
According to News Report, 8.2 TB Of MobiKwik User Data Allegedly Hacked
One of the Biggest Data Leak !!!
It was available on dark web to sell for Bitcoins.
What can we do to be on a safer side?
If you save your card on mobikwik then keep your debit/credit card international transaction off because international transaction do not require OTP.
IT IS ADVISED TO ALL MOBIKWIK USERS TO KEEP A CLOSE WATCH ON THEIR DEBIT CARDS TRANSACTION THAT WERE LINKED WITH THEIR MOBIKWIK ACCOUNT
Nearly 9 crore users below information is leaked :-
1. Mobikwik Account Phone Numbers
2. Your full name
3. Your KYC documents like PAN & Aadhaar
4. E-mail addresses
5. Hashed passwords
6. Debit/Credit Card details
7. Your GPS location
8. Phone model details including IMEI
9. Other apps in your system.
10. Your selfie
MobiKwik being a truly Indian wallet tumse ye ummid na thi
Source : India Times
I found no files.
Does this mean I am safe😐
link to check?
How come some people are able to see their data while I’m not?
Is the site down or search disabled?
Yes most search functionality disabled as of now
And this password was for my mobikwik account ! Any way to file an online complain about this shitty app?
Edward snowden has been living in Russia in exile for pointing out this in America …Julian asanje and many more guys have pointed out this data saving joke earlier in usa now it’s starting in india also…..desh ki pragati ho rahi hai 😂😂modi hai to mumkin hai 😂🤣🤣🤣🤣
Official statement from Mobikwik.
https://blog.mobikwik.com/message-from-the-co...y/
https://twitter.com/MobiKwik/status/13768367469...
They didn’t find any evidence of a breach. So they have denied any kind of leak. WTF 
Edit : I won’t use this bull***t app anymore. already raised account closure request. app uninstalled. bye bye mobi***k.
there is glimmer of hope if RBI intervenes, if that doesn’t happen, simply close your accounts/uninstall app and forget mob***k.
Can’t access website even from tor browser. Think it’s disabled to protect misuse
From their blog:
No misuse of your wallet balance, credit card or debit card is possible without the one-time-password (OTP) that only comes to your mobile number.
This means they want to hide behind OTP feature.. yet denying any breach.
What about international txns 
Sad state.. They should have accepted and worked it out with the data leakers or fought against them with the police accepting the leak.
Their response now:
We notice all Indians had lots of fun & memes on Twitter and Telegram groups. Let’s get serious. Shall we post your last 10 mobikwik transactions?
It’ll prove the company that they got hacked. Let us know on our email in this html page and we will be back after 48 hrs.
Cc: @this.person.actually and all who find this relevant.
Hacker update →
We notice all Indians had lots of fun & memes on Twitter and Telegram groups. Let’s get serious. Shall we post your last 10 mobikwik transactions?
It’ll prove the company that they got hacked. Let us know on our email in this html page and we will be back after 48 hrs.
What is point?
Why hacker wants to recognized as a warrior?
Hacking is criminal offence and he should be tried as criminal.
Chori aur us pe seena chori?
earn upto 100 rs cashback with mobiwik
Please Visit
https://ddime.i...L4
Mobikwik se ho kya 😤😤
Koi Ramadhir Singh ko bulao… Ye mobikwik wale abhi bhi sach maanne ko tayyar nahi hain. 
Who ever checked their data on the above link, please update here for any unauthorized transactions on your CCs/DCs/Bank accounts.