BigBasket hit by Data Breach and as many as 20 million users’ data is now on the dark web. This year, due to lockdown, many people used this online supermarket.
According to BigBasket, email ids, phone numbers, order details, and addresses were compromised.
In the course of our routine Dark web monitoring, the Research team at Cyble found the database of Big Basket for sale in a cyber-crime market, being sold for over $40,000. The leak contains a database portion; with the table name ‘member_member’. The size of the SQL file is ~ 15 GB, containing close to 20 Million user data. More specifically, this includes full names, email IDs, password hashes (potentially hashed OTPs), pin, contact numbers (mobile + phone), full addresses, date of birth, location, and IP addresses of login among many others., the Cyble’s blog stated.
Earlier in October, Dr. Reddy’s laboratories faced a data breach and had to stop their plans of clinic-trials of Covid-19 vaccine Sputnik V.
Most of the cyberattacks are due to application vulnerabilities. As a user, you can try to make your password as complex as possible. And you can save yourself from phishing attacks.