India’s biggest online supermarket “BigBasket” has recently suffered a massive data breach.
BigBasket is an established and trusted online supermarket platform in India. The pandemic has allowed BigBasket and similar platforms to expand their sales and profit.
It is an e-commerce platform where consumers can order groceries delivered at home after making payment online. Hence, a variety of sensitive customer data is stored on the app for future transactions, including credit or debit card information, contact numbers, and delivery address.
Security researchers have confirmed that the database exposed is available on the dark web for sale, priced at around $40,000. According to researchers, the database has a table named “member_member,” and it is 15GB in size.
The table includes full names, password hashes and hashed OTPs, email addresses, mobile and phone numbers, pin, date of birth, home address, location, and login IP addresses. The company acknowledged the breach and has confirmed that debit and credit card data wasn’t exposed.
NPAV recommends users to change the password of their BigBasket accounts. Users must watch out for phishing SMS and emails that may land in their phones and emails. Email ids and phone numbers can allow hackers to launch various lethal cyberattacks on users.
Install NPAV on your devices to keep them protected from all kinds of cyberattacks. Use NPAV and join us on a mission to secure the cyber world.