Mobikwik Data Breach - The Biggest KYC Data Leak

manu1991

Ancient Philospher
Messages
7,977
Location
London
ISP
Hyperoptic
Keeps showing failed to connect to backend to me.

FFS, if they were in the US or EU, the fine alone would bankrupt them.
 

Sushubh

Be nice pliss
Staff member
Messages
383,570
Location
Gurgaon
ISP
Excitel
Airtel
my gps coordinates.
one of my bank accounts.
one of my credit cards
my current mobile number.
are there.

and apparently they also have kyc data which means my pan card or voter id card photos because i didn't have aadhaar when i did my mobikwik kyc.

so everything is great.

Happy Dance GIF by Hayley Kiyoko
 

manu1991

Ancient Philospher
Messages
7,977
Location
London
ISP
Hyperoptic
What does this mean? Do they have my CVV etc or not? Card number is valid. I replaced with XXX

"card_number": "XXXXX******XXXX",
"holder_name": "manu1991",
"other_card_details": [
"expirymonth",
"expiryyear",
"cvv2"
 

manu1991

Ancient Philospher
Messages
7,977
Location
London
ISP
Hyperoptic
So they were storing CVV numbers as well? I thought no one stores CVV details. FFS. Will need to get all of them reissued
 


Navjot Singh

Admin
Staff member
Messages
10,585
Location
Gurgaon
ISP
Airtel
What security audits? It's a lot easy to deny and move on. They know, the government won't take any action. And given the attitude, forget anything will happen. lol

Source

The attitude of the co-founder.

The company has of course denied any breach.

Source

This is an old tweet because this breach was first reported in late February.
 
Messages
1,429
Location
Karnataka
ISP
▪️ BSNL Fiber(Direct)
▪️ (Jio Airtel) 4G
Can someone verify if CVV is also stored ?
Donno when Paytm will get jacked ....
Also being connected with bank accounts and knowing how much money each has , They will write a script which filters out with Balance Rs>X rupees . Shortlisted and scams will start.

All lessons to learn . Separate Saving/Salary/Main account from expenditure account is the least we can do
 
Last edited:

Sushubh

Be nice pliss
Staff member
Messages
383,570
Location
Gurgaon
ISP
Excitel
Airtel
tor browsers users do not contribute to tor network right? you have to run a dedicated tor node software or something?

i imagine the dump is also on torrents by now. might be easier to get it from there for local searches. searches on popular sites for mobikwik does not give any result so probably not.

Have I Been Pwned? would probably add it in the coming hours. But it does not show entire data. Just confirm that your data was breached if your email id was part of the hack.