The hype around MobiKwikโs data leak has taken a new turn today after several independent researchers are reporting theyโve found the leaked dump. As per them, the database containing 11-crore Mobikwik users is now available on the dark web for free, and many are checking whether their record is listed.
MobiKwik Data Dump in Dark Web
Earlier this month, weโve covered a story of MobiKwik where itโs alleged to have leaked about 11-crore of its usersโ database. This was pointed out by an Indian independent researcher named Rajshekhar Rajaharia, who said that a hacker had access to MobiKwikโs dump via a leaking server since January this year.
While MobiKwik immediately refuted his claims and even warned about filing a case against this report, it seems to be the incident is real and should get attention. This is because several other independent researchers are now reporting a dark website that listed out all the leaked records from the MobiKwik dump!
Probably the largest KYC data leak in history. Congrats Mobikwikโฆ pic.twitter.com/qQFgIKloA8
— Elliot Alderson (@fs0c131y) March 29, 2021
This was reported initially by Elliott Alderson, who earlier called for weak security in Aadhar and Aarogya Setu app. Now, he tweeted about a site thatโs letting visitors make a free search throughout the MobiKwik database, whichโs claimed to be from the earlier hack.
The breadth of the database is unknown yet, but itโs reported to be 8.5TB and has KYC details of all MobiKwikโs registered users. KYC includes PII and also the images of users, which are sensitive. And since itโs interesting, many have started asking for the dumpโs URL and the ones whoโve got are selling to others for a price!