According to risk intelligence platform Cyble, Paytm’s e-commerce market unit Paytm Mall was hacked. Allegedly, a cybercriminal group calling itself “John Wick” can use the backdoor/administrator to access Paytm Mall’s entire database without restrictions. Cyble also claimed that the hacker was provided by an insider at Paytm Mall. In addition, according to the report, cyber criminals also demanded a ransom in the form of 10 ETH (approximately Rs 31.2 crore) in cryptocurrency. Paytm said it has not found any security vulnerabilities.
Cyble’s report stated that a suspected former cartel member who used the alias KelvinSec and belonged to a known hacker organization “John Wick” provided information about the hacker to the risk intelligence platform. Allegedly, the cybercrime group was able to upload backdoors/administrators in Paytm Mall and had unrestricted access to its entire database. The hacker is said to have gained access to the production database, which may contain information about all Paytm Mall accounts and other related information. Cyble also cited sources, claiming that the perpetrator said it was internal work.
The hacker group requested a ransom of 10 ETH, and the report stated that they were receiving the ransom from the Paytm shopping mall. The report also added that the perpetrators also posted information about Paytm Mall hackers on the Russian hacker forum.
Paytm stated that all user and company data is safe.
A Paytm spokesperson told Advertisement Shout: “As you would expect, we have invested heavily in data security. We have been investigating claims about possible hacking and data breaches, but have not yet discovered any security risks. We also have bugs. A bounty program under which we will reward responsible disclosure of any security risks.”
The spokesperson added: “We have worked extensively with the security research community to safely resolve security anomalies.”
Disclosure: One97, Paytm’s parent company, is an investor in Advertisement Shout.
This is the best true wireless headset under Rs. 10,000? We discussed this on the weekly technical podcast Orbital, you can subscribe via Apple Podcast, Google Podcast or RSS, download the episode, or click the play button below.