Thursday, April 18, 2019

JustDial data leak exposed personal details of 100 million users: IT expert

Technology News

Justdial, a company that provides local search for different services in India over voice calls and internet, suffered a data breach last week that compromised the personal details of 100 million users, according to independent cyber-security researcher Rajshekhar Rajaharia.

An Economic Times report on Thursday quoted Rajaharia as saying that the company has not been able to fix the breach. He told ET that the breach did not affect a newer, revamped version of the website.

In a Facebook post, the cybersecurity expert claimed that the attack put at risk data of users who called JustDial's customer care number '88888 88888'.

Inc42 quoted a senior JustDial executive on Monday as saying that the company is investigating the alledged loopholes in its database and that the company's systems are foolproof.

Rajaharia said on Wednesday that user data "including name, email, mobile number, gender, dob, address, photo, company, occupation & other details are publicly accessible" on the site.
He told Inc42 that the link between JustDial's application and database is not protected.
Data breach incidences in India were the second highest globally in 2018, according to a report by digital security firm Gemalto.


 A report by news agency IANS said on Wednesday that cyber security experts have raised alarms over an 'advanced phishing attack' on IT bellwether Wipro, saying that no organisation, regardless of its size, is immune from sophisticated cyber criminals in India. The IT giant suffered an attack on its employee database. E-commerce giant Amazon faced a data leak in December last year that exposed some sellers’ private financial information to other users.

No comments:

Post a Comment