IndiaMART data breach: 40,000 company records discovered on cybercrime forums

Jessica Haworth

25 June 2020 at 11:36 UTC

Updated: 25 June 2020 at 18:26 UTC

Researchers say sensitive information is for sale on two separate underground marketplaces

06dd article 200625 indiamart body

A breach at online marketplace IndiaMART has leaked the sensitive data of more than 40,000 suppliers.

IndiaMART is a business-to-business e-commerce site, connecting suppliers from across India. Last year, the official app had 10 million downloads.

Researcher Ashok Krishna from threat monitoring platform CloudSEK discovered that data belonging to thousands of suppliers was being sold on online forums.

The same set of information, estimated to be around 44,000 records, appears to be for sale on two separate underground websites.

Krishna investigated a sample of one of the datasets, posted for sale on June 20, and found it contained 44 separate records.

Each record was said to consist of sensitive information including suppliers’ user IDs, full names, addresses, email addresses, and phone numbers.

IndiaMART supplier data was found on an underground forumIndiaMART supplier data was found on two underground forums

Krishna says he used publicly found sources to verify that the data was legitimate. The sample contains records registered in February 2016, primarily from the Indian state of Gujarat.

These details could be used in a number of ways, including being utilized for phishing campaigns, scams, and even identity theft, explains CloudSEK.

“Usually our mobile numbers and email IDs are linked to banking, mobile wallet, and other online accounts,” a blog post explains.

“Having these details makes it easier for threat actors to compromise the victims’ accounts.”

No response

Researchers from CloudSEK said they attempted to reach out to IndiaMART but received no response. As a result, they do not yet know the source of the leak.

Deepanjli Paulraj, lead cyber intelligence editor at CloudSEK, told The Daily Swig: “We have been able to validate the data. It does belong to active IndiaMART vendors.

“We reached out to IndiaMART and CERT India a couple of days ago. CERT India has asked for more details, but IndiaMART has not responded.”

“Whether a bug in the IndiaMART website or an unsecured database, if not remediated, could put six million-plus suppliers on the platform at risk,” the post explains.

Read more of the latest data breach news

The second set of data contains 43,920 records, the person posting it claims, however the researchers were not able to verify this data.

Suppliers using the IndiaMART platform should immediately check whether their accounts have been tampered with, CloudSEK advises.

Other recommendations include reviewing all online accounts and financial statements, cautioning friends and family against anyone impersonating you or your business, and enabling multi-factor authentication.

Researchers also urged suppliers never to share their one-time passwords (OTPs) generated by multi-factor authentication devices.

“While this is a rule of thumb, it is especially relevant in this case, because threat actors already have email IDs and phone numbers. So, the OTP is the only thing standing between threat actors and the victims’ accounts,” reads the blog.

CloudSEK also advised IndiaMART to perform an audit to uncover the full extent of the leak.

The Daily Swig has contacted IndiaMART for comment. We will update this article as and when we receive a response.

READ MORE Bug bounty powerhouse: India takes top spot for Bugcrowd hackers worldwide

Source link

Recent articles

As U.S. Confronts Anti-Black Racism, Latinos Wonder Where They Fit In

“Many Latino youth, they are making the connection, they are pressing their families to have difficult conversations,” said Chris Zepeda-Millán, a professor of...

‘Comedy Bang! Bang!’ Set to Leave Netflix (again) in August 2020

Comedy Bang! Bang! set to leave Netflix (again) – Picture: IFCComedy Bang! Bang! is currently set to leave Netflix for the second time...

What Hong Kong’s Pandemic Experience Taught Uber About Other Cities

OAKLAND, Calif. — In late February, Uber executives were set to gather in San Francisco to form business plans for the year as...

Carbon monoxide poisoning clue emerges in fatal DHC-2 crash probe | News

Australian investigators have urged operators of piston-engined aircraft to carry out inspection and repair of exhaust systems, after finding that the pilot of...

Twitter is removing ‘master,’ ‘slave’ and ‘blacklist’ from its code

Twitter is dropping the terms "master," "slave" and "blacklist" from its code after two engineers lobbied for the use of more inclusive programming...

Botswana reports mysterious deaths of hundreds of elephants | News

Hundreds of elephants have died mysteriously in Botswana's famed Okavango Delta, according to an official who ruled out poaching as the tusks were...

Leave a reply

Please enter your comment!
Please enter your name here