Grocery e-commerce platform Bigbasket has faced a potential data breach which could have leaked details of its around 2 crore users, according to cyber intelligence firm Cyble. The company has filed a police complaint in this regard with Cyber Crime Cell in Bengaluru and is verifying claims made by cyber experts.
Bengaluru: Bigbasket, one of India's largest online food and grocery stores, has reportedly faced a data breach following which the details of over two crore users has been put on sale on the dark web.
The company has filed a police complaint in this regard with Cyber Crime Cell in Bengaluru and is verifying claims made by cyber experts.
"We have lodged a complaint with the Bengaluru Cyber Crime Cell and intend to pursue it to bring the culprits to book. As confidentiality of customers is priority, we do not store their financial data, including credit card numbers and are confident that it (data) is secure," the e-tailer told a news agency.
Bigbasket stated that it has a robust information security framework and that it maintained only email ids, phone numbers, order details and addresses, which could have been accessed.
The Bengaluru-based company is funded by Alibaba Group, Mirae Asset-Naver Asia Growth Fund, and the UK government-owned CDC group.
Cyble claimed that the breach occurred on October 30, 2020. Cyble then validated it on October 31 and informed Bigbasket on November 1.
"Online shopping for food and groceries dramatically shot up since April due to the COVID-induced lockdown, restrictions like social distancing and the pandemic scare. During our dark web monitoring, our research team found the database of Bigbasket is for sale in a cybercrime market at 40,000 Dollars," said Cyble.
Last Updated 9, Nov 2020, 1:13 PM