An alleged database of about 20 million BigBasket users has leaked on a well known cybercrime discussion board, months after the Indian grocery supply startup confirmed it had confronted an information breach.
The database consists of users’ electronic mail deal with, cellphone quantity, deal with, scrambled password, date of start, and scores of interactions that they had with the service. TechCrunch confirmed particulars of some prospects listed within the database — together with these of the writer.
BigBasket co-founders didn’t reply to texts requesting remark.
TechCrunch has requested one BigBasket co-founder whether or not the startup ever disclosed the information breach to prospects.
A hacker who goes by the title ShinyHunters published the alleged BigBasket database — and made it obtainable for anybody to obtain — on a well-liked cybercrime discussion board over the weekend. In newer posts on the discussion board, a number of menace actors claimed that that they had decoded the hashed passwords and had been promoting it. ShinyHunters didn’t instantly reply to a textual content requesting remark.
The incident comes weeks after Indian conglomerate Tata Group agreed to acquire BigBasket, valuing the Indian startup at over $1.eight billion. The acquisition proposal is at the moment awaiting approval by the Indian regulator.