New Delhi: The e-commerce unit of payment solutions provider Paytm, Paytm Mall, said on Sunday that it has yet to find security flaws after investigating allegations of a possible attack and data breach.
The clarification came after US cyber research firm Cyble said that a group of hackers with the alias ‘John Wick’ was able to gain unrestricted access to Paytm Mall databases.
“We would like to make sure that all users, as well as company data, is completely safe and secure … We have been investigating claims of a possible attack and data breach, and have not found any security flaws yet,” a Paytm Mall spokesperson said in a statement.
The spokesperson added that the company invests heavily in data security and also has a Bug Bounty program under which it rewards responsible disclosure of any security risks.
“We work extensively with the security investigation community and safely resolve security anomalies,” the spokesperson said. Cyble, in a blog, had said: “… it appears that the actor gained access to his production database and potentially affects all accounts and related information in Paytm Mall.”
Cyble said that based on the information available, the hack occurred “due to inside information at Paytm Mall” and noted that the claims, however, are not verified.
“Our sources also sent us the messages in which the perpetrator also claimed that he was receiving the ransom payment from the Paytm Mall. Data breach when hacker demands are not met is a known technique implemented by various crime groups. Computer scientists, including ransomware operators. stage, we do not know the ransom was paid, “Cyble said.
The perpetrator had reportedly demanded 10 ETH (Ethereum) equivalent to $ 4,000. Cyble said she has contacted Paytm Mall with any comments and is waiting for a response.
This story was published from a news agency feed with no changes to the text. Only the title has been changed.
.
