SoSasta hacked

[trigger]

Another gone, with leaking the users' credentials. Although in an email to their users, SoSasta has said that they’ve been informed about a possible security breach. The email sent out by SoSasta categorically states that sensitive financial details (Credit Card, Debit Card information) was not leaked.

Below is the excerpt of email I received this morning...

Hi SoSasta Subscriber,

Over this weekend, we've been alerted to a security issue potentially affecting subscribers of Sosasta. We wanted to let you know that the issue has been brought under control and your accounts are secure. However, as a precautionary measure, we recommend that you change your SoSasta password immediately, by visiting the SoSasta website (Sign-In using your existing password, then click on Profile followed by Change Password). If you use the same email/password combination at other websites, we recommend you change those passwords as soon as possible, too.

Please be aware that none of your financial information (Credit Card, Debit Card, NetBanking etc) has been compromised since this information is not stored on SoSasta, as per law.

If you have any concerns or find any unusual changes in your SoSasta account, please contact our Customer Support team as soon as possible at 1800 103 2111 between 9.30 a.m. and 6.30 p.m. IST, Monday to Saturday so that we can review your account.

You should know that we are working aggressively to prevent this from happening again. Sosasta takes security and privacy very seriously -- it's important to us to provide you with a safe shopping experience of the highest quality, and we will do everything possible to keep your trust. Please accept our apology for any inconvenience or concern we've caused.

Sincerely,
SoSasta Customer Support

[Update: Database leaked] Groupon India website vulnerable, asks users to change passwords | ZDNet
Groupon India's website hacked