Also read: BigBasket data breach: personal details of 2 crore users being sold on dark web
Juspay founder Vimal Kumar told Gadgets 360, “No card numbers, financial credentials, or transaction data was compromised. Data records containing non-anonymised email, phone numbers, and masked cards used for display purposes were compromised.” He added that only a ‘small fraction’ of the total 10 crore users affected have had their mobile numbers and email IDs hacked.
Despite Juspay’s assurances that its systems are safe, the researcher found several glaring holes in its security. The company’s website is still allegedly redirecting users to unscrupulous webpages due to an old domain used for beta testing now being owned by another user. Juspay says that it has ramped up security measures by making 2FA (two-factor authentication) mandatory for all of its developers.
Juspay says that it has ramped up security measures by making 2FA (two-factor authentication) mandatory for all of its developers
Juspay is yet to contact the users affected by the said breach, and one can only hope that it does so soon. In the meanwhile, you can check if your personal information has been leaked online via services like HaveIBeenPwned. It is also important to use 2FA and a password manager wherever possible as it significantly reduces the chances of hackers using your personal information to gain access to your email, social media, etc.