New Delhi: Once again, there are reports of credit and debit card data theft from Indian users. Cybersecurity researcher Rajasekhara Rajahariya claims that data on about 100 million (100 million) credit and debit card holders in the country is being sold on the Dark Web. Most of the data on the Dark Web has been leaked from the servers of Bangalore-based digital payments gateway Juspay. Last month, Rajasekhara claimed that credit and debit card data of more than 7 million (7 million) users in the country had been leaked.
According to the researcher, this data is being sold on the Dark Web. The leaked data includes the names of Indian card holders along with their mobile number, income level, email ID, permanent account number (PEN) and details of the first and last four digits of the card. He has also shared his screenshots on social media.
10 Crore Indian Cardholder’s Cards Data Including Name, Mobile, BankName Leaked from @juspay Server. Available for Sell on DarkWeb.
Story – https://t.co/WczIrFeLel #Infosec #DataLeak #DataBreach #infosecurity #CyberSecurity #GDPR #DataSecurity #Banks #CreditCard #dataprotection pic.twitter.com/X1KYcP8WSh
– Rajshekhar Rajaharia (@rajaharia) January 3, 2021
Juspay said the number of users was low
The company said there was no agreement with any card number or financial details during the cyber attack. According to the report, data leaks of 100 million users are being reported, while the actual number is much lower.
A company spokesman said in a statement that on August 18, 2020, an unauthorized attempt was made to access our servers, which was stopped. No card number, financial credit or transaction data was leaked. Some non-confidential information, plain text emails and phone numbers were leaked, but their number is much less than 100 million.