Paytm Mall breach data is fabricated, says Have I been Pwned founder Troy Hunt
- An earlier report had suggested that
PaytmMall suffered a massive data breach in August 2020.
- It was expected that the breach had compromised data such as the user’s phone number, email address, purchase history, and more.
- An investigation by Troy Hunt has now revealed that the breached data has been fabricated.
“An update on this breach: after loading it into @haveibeenpwned, the head of @paytm's infosec team reached out and we had a chat about the authenticity of the data, which they believe didn't originate from them. We now collectively believe it's fabricated,” Troy Hunt said in a tweet.
Paytm, one of the largest wallet and payment services platforms, reportedly suffered a massive data breach in 2020. While the company has not accepted this, it had reportedly received a ransom demand after the data breach.
Firefox Monitor, a security tracker by Mozilla that informs users if their mobile number or email has been compromised in a data breach, has today confirmed that Paytm suffered a data breach in 2020 and that data of over 3.4 million users has been discovered online.
Update - Paytm has clarified the leak. “The data of our users is completely safe & claims related to data leak in the year 2020 are completely false and unsubstantiated. A fake dump uploaded on the platform haveibeenpwned.com appears to wrongly alert of a data breach on Firefox browser. We are getting in touch with Firefox and the platform to resolve the matter," a Paytm spokesperson said in a statement to Business Insider India.
What information was compromised in the data breach?
According to a report by Firefox Monitor, the data breach compromised information such as the user’s phone number, email address, purchase history, gender, date of birth, location and income levels.
Fortunately, payment information such as saved cards was not compromised during the data breach.
You need not change your passwords as the data breach did not compromise the passwords.
How to find out if your data was compromised?
If you are a Paytm user and wish to know if your data has been compromised, you can follow the below steps –
- Go to Have I been pwned website here.
- Enter your email address or phone number and click “pwned?”.
- You will then be able to see all the websites or apps where your data was compromised.
.@Paytm data breach. That's an awful lot of my personal info that Paytm has let out. https://t.co/Jg5BDebhLe— Narayanan Hariharan (NithyaKarma.com) (@narayananh) 1658889446000
And PayTm data breach. https://t.co/LaRN0PQ7Pm— Ankit Prakash (@ankitpr89) 1658888869000
@Paytmcare @Paytm I have been warned by @firefox monitor for Data Breach.Is it true?Please confirm?@GoI_MeitY… https://t.co/w4Ftn4vwZ8— Rajendra Kumar Yadav (@_rajendraryadav) 1658894750000
OnePlus 10T to launch soon in India – launch date, expected specifications and everything you need to know
Redmi K50i review: A solid performer but lacks the charm of its predecessor
Google rolls out final Android 13 beta – eligible devices, how to download, and everything you need to know
- EAM Jaishankar meets Australian Intelligence chief Andrew Shearer on sidelines of Raisina Dialogue
- Sustainable Tourism Practices
- Byju's shareholders vote to remove CEO, family; company calls vote invalid
- Engaging with competent authorities, use only genuine cheese, says McDonald's
- Apple's India revenue up 42% to $8.7 bn in 2023: Morgan Stanley