News Mobikwik data breach - personal data of 3.5 million users up for sale on dark web

Those with paytm also need to check their app permission and other privileges which they grant to the company. The privacy issue is the only thing keeping me away from paytm.
Haha so the CEO of Mobikwik is apparently on a blocking spree on Twitter lol. Basically blocking anyone questioning him and his company's policies.
 
Last edited:
Those with paytm also need to check their app permission and other privileges which they grant to the company. The privacy issue is the only thing keeping me away from paytm.
Haha so the CEO of Mobikwik is apparently on a blocking spree on Twitter lol. Basically blocking anyone questioning him and his company's policies.

Wow! how is this person a CEO of a company, according to him people will willingly upload KYC document's to the web, facepalm.
 
Amazing company. Since people's kuc selfie are leaked too, how hard can it be to check whether it is the same same selfie as your platform.i agree other documents will be same, but how can the photographs be exact same in many cases. Quite unlikely. Their failure to acknowledge this is more pathetic than the breach.
 
I think its fair to say that all the KYC particulars loaded on any payment platform like this or Paytm has been sold off to each and every bidder. I recall someone saying a long time ago on one of the news talk shows that 1) that most of these companies sell the data they collect to marketing, data mining companies for a small fee and 2) Transfer the data to the data mining companies to analyze spending trends et all.

Not too sure what to make of this but the leaks have been popping up fairly regularly at this point. Wasn't there another news of a data leak from one of the companies late 2020 or early 2021 ?

Also new channels / news outlets seem to be fairly good at not bringing this up too much.
 
We need strict government/RBI laws, had it been USA, FTC would have intervened. On the other hand here everything is silent, like any other day.
 
Those with paytm also need to check their app permission and other privileges which they grant to the company. The privacy issue is the only thing keeping me away from paytm.
Haha so the CEO of Mobikwik is apparently on a blocking spree on Twitter lol. Basically blocking anyone questioning him and his company's policies.

The fact that he thinks everything is secure because of OTP over SMS is probably the most amusing aspect of the message.
SMS: The most popular and least secure 2FA method (allthingsauth.com)
 
Finally! I think mobikwik and people who still used a fraud company's app deserve the security lapses. Hopefully this will make them more vigilant in the future. Survival of the fittest is my belief system.

I think cred is going to be the next mobikwik.
 
+1 for cred. I de-linked my c.cards a long time ago. Am sure they have an archive of my cards, luckily they have either expired or closed.

At this juncture. What are you guys planning on? Unlink your credit cards, bank accounts from these apps? Not just payments type, bank/card information stored on shopping apps, payment gateways like RazoyPay before the inevitable happens?
 
to be frank in india many critical organizations are not very well prepared . my recommendation would be have a dedicated account for digital form of payment wherein you top it up when you are going or are expecting to make payments.
 
Finally! I think mobikwik and people who still used a fraud company's app deserve the security lapses. Hopefully this will make them more vigilant in the future. Survival of the fittest is my belief system.

I think cred is going to be the next mobikwik.

Damn! now I am really worried, deleting all cards from there.
 
+1 for cred. I de-linked my c.cards a long time ago. Am sure they have an archive of my cards, luckily they have either expired or closed.

At this juncture. What are you guys planning on? Unlink your credit cards, bank accounts from these apps? Not just payments type, bank/card information stored on shopping apps, payment gateways like RazoyPay before the inevitable happens?
Unlinking will do jack shit in countries without any proper data protection laws.
 
+1 for cred. I de-linked my c.cards a long time ago. Am sure they have an archive of my cards, luckily they have either expired or closed.

At this juncture. What are you guys planning on? Unlink your credit cards, bank accounts from these apps? Not just payments type, bank/card information stored on shopping apps, payment gateways like RazoyPay before the inevitable happens?
I forcefully asked them to close my account and cancel everything I could. They said they have to maintain old card details for some government restrictions as there were transactions or payments on those. I said fair enough. Went ahead and got all my cards reissued. Problem solved. Cred se picha chuta
 
I forcefully asked them to close my account and cancel everything I could. They said they have to maintain old card details for some government restrictions as there were transactions or payments on those. I said fair enough. Went ahead and got all my cards reissued. Problem solved. Cred se picha chuta
I still keep using Cred for convenience and cashback because credit cards in general are much easier to deal with if ever there is a fraudulent transaction. The transaction is reversed immediately if you flag it.

Enabling Cred Protect is probably the worst thing you can do as then they have access to your transactions. Otherwise, they can only mine your total credit card usage.

However, I don't have an Axis Bank account or card and they have been going crazy with marketing messages ever since I started using Cred. So Axis Bank mines the data like crazy which is probably the worst part of using Cred.
 
I still keep using Cred for convenience and cashback because credit cards in general are much easier to deal with if ever there is a fraudulent transaction. The transaction is reversed immediately if you flag it.

Enabling Cred Protect is probably the worst thing you can do as then they have access to your transactions. Otherwise, they can only mine your total credit card usage.

However, I don't have an Axis Bank account or card and they have been going crazy with marketing messages ever since I started using Cred. So Axis Bank mines the data like crazy which is probably the worst part of using Cred.
I switched to amazon. anyways all my cards were saved with them and i believe that bigger the firm, more money they will need to sell your data before they cave in. So it is probably lesser chances of data being leaked compared to cred at least lower down the line
 
I have a low value Instant Credit Card from my main bank which is linked to Paytm, Amazon, Zomato and Flipkart. I am also not too keen on Gpay or any other service provider which requires me to link my bank account to avail their service. For some reason, I have never been comfortable with that Idea, especially give the state (lack of) of our privacy laws and data protection laws.

^^ Sudhir Chaudhary??
If this was directed at my message, it was one of the English news shows. Probably on either NDTV or Mirror Now.
 
Back
Top