BigBasket, an online grocery market site, has supposedly leaked the data of 2 crore customers on the dark web in a major data breach.
BigBasket leaked confidential data such as full names, email IDs, password hashes, phone numbers, emails, and more on the dark web, according to cybersecurity company Cyble. A hacker has put the data on sale for about Rs 30 lakh, adding to the woes of BigBasket.
BigBasket requires users to share their debit or credit card information with the e-commerce site for online shopping. Furthermore, to make it easier for the users to position future orders, the site also saves the details. Cyble has disclosed that people’s names and addresses have been leaked on the dark web, but the company has maintained that users’ financial data is protected. BigBasket has also lodged a complaint with the Bengaluru Cyber Cell.
Commenting on the data breach, BigBasket in a statement said, “We heard about a possible data breach at BigBasket a few days ago and in consultation with cybersecurity experts are assessing the nature of the breach and validity of the allegation and finding urgent ways to contain it. We have also lodged a complaint in Bengaluru with the Cyber Crime Cell and plan to pursue this aggressively to bring the perpetrators to book.”