News about the data leak was shared last month on\u00a0Twitter by Alon Gal, co-founder, and CTO of cybercrime intelligence firm Hudson Rock.<\/p>\n The database was being sold on the dark web for around two to eight bitcoins, with a 50 bitcoin ransom for the company to block the sale of its data.<\/p>\n However, the hacker has denied sharing any sample of the stolen data with cybersecurity researchers, which means that claims about the stolen data, size, and contents are just allegations.<\/p>\n According to screenshots of the leaked database shared by Gal on Twitter, the data stolen from Domino\u2019s India\u2019s database is from the period between 2015-21, although this remains unverified.<\/p>\n As a policy we do not store financial details or credit card data of our customers, thus no such information has been compromised.<\/p>\n Our team of experts is investigating the matter and we have taken the necessary actions to contain the incident,\u201d the spokesperson had said at the time.<\/p>\n The company did not respond to questions about the severity of the customer location and phone numbers data being leaked.<\/p>\n A report by IBM\u2019s \u2018Cost of a Data Breach Report 2020\u2019 states that Indian companies witnessed an average $2 Mn total cost of a data breach in 2020, representing an increase of 9.4% from 2019.<\/p>\n A total of over 26,100 Indian websites were hacked in 2020 amid the pandemic as per the data recorded by the state-owned Indian Computer Emergency Response Team (CERT-In).<\/p>\n In March, Network18-owned finance portal\u00a0MoneyControl also suffered an alleged data breach, one that supposedly affected 7 lakh users. Days before, online discount broking platform\u00a0Upstox suffered a data breach that allegedly affected 2.5 Mn users.<\/p>\n And last month,\u00a0fintech startup Mobikwik denied claims\u00a0about a data breach impacting 100 Mn users, despite proof of the data belonging to Mobikwik users.<\/p>\n In February, the Reserve Bank of India (RBI), alarmed by the state of data breaches affecting Indian startups and payments processors, issued new guidelines that stated that payment aggregators and gateways would not be allowed to store the card details of a customer online.<\/p>\n The decision came a few weeks after a data breach affecting payments processor Juspay\u00a0led to over 10 Cr user records being leaked online.<\/p>\n As of now, no action has been taken against any of these platforms for not keeping customer data safe.<\/p>\n In a hyper-connected world with tech platforms often having an overlap of users, such data leaks have a cascading impact on the entire ecosystem.<\/p>\n In November last year, BigBasket has faced a data breach that exposed the personal details of around 2 Cr users. The data was put up for sale for around INR 30 Lakh and in\u00a0April this year,<\/p>\n the data was leaked online in a similar manner to how the Domino\u2019s India database has been leaked.<\/p>\n Since then, many users who have been impacted by the BigBasket leak have complained that their Flipkart accounts have been hijacked.<\/p>\n The problem here could potentially extend beyond Flipkart.<\/p>\n Because in this case, it is not Flipkart\u2019s data that has been leaked but rather passwords and usernames belonging to BigBasket users, who also have accounts on Flipkart.<\/p>\n Many of these users are likely to have used the credentials they used for BigBasket for other platforms.<\/p>\n","protected":false},"excerpt":{"rendered":" domino’s data leak Data related to over 18 Cr orders from pizza chain Domino\u2019s India appeared on the dark web<\/p>\n","protected":false},"author":1,"featured_media":1211,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[37],"tags":[],"yst_prominent_words":[],"class_list":["post-1210","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-hackers-news"],"_links":{"self":[{"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/posts\/1210","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/comments?post=1210"}],"version-history":[{"count":0,"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/posts\/1210\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/media\/1211"}],"wp:attachment":[{"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/media?parent=1210"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/categories?post=1210"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/tags?post=1210"},{"taxonomy":"yst_prominent_words","embeddable":true,"href":"https:\/\/zerothcode.com\/blog\/wp-json\/wp\/v2\/yst_prominent_words?post=1210"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}![\"domino's](\"https:\/\/inc42.com\/wp-content\/uploads\/2021\/05\/domi-1024x576.jpg\")
The database includes personal details of the customers provided to Domino\u2019s India when they placed an order through its website or app.<\/h4>\n
These include names, phone numbers, email IDs, addresses, and payment card details.<\/h4>\n
Responding to the data breach allegations last month, a Domino\u2019s India spokesperson told Inc42<\/i><\/b>\u00a0that while the company had detected an \u2018information security\u2019 incident recently,<\/h5>\n
no financial information of users had been compromised.<\/h5>\n
Hackers Target Indian Startups
\n<\/b><\/h3>\n