Vedantu’s data breach risked 680,000 customers data, Technology News, ETtech
Bengaluru-based educational technology firm Vedantu faced a data breach in the last week of September which risked data of 680,000 customers. The vulnerability exposed customer details including email and IP addresses, names, phone numbers, it said.
Vamsi Krishna, the co-founder of Vedantu, told ET that since the details were stored in an encrypted format, it would not be easy to misuse easily. Also no sensitive details would have been compromised.
He said the vulnerability was fixed within a few days and customers were informed about the attack and advised to change their passwords.
Security researcher Troy Hunt, who posted about the breach in his website ‘Have I been Pawned’, however, wrote that the compromised data included browser user agent details, email addresses, gender-specific identifiers, IP addresses, names, passwords, phone numbers, spoken languages, time zones and website activity.
India ranks among the top five globally for the most high-profile cyber-attacks, with more than 90% of hackers under the age of 35, according to a report prepared jointly by consultancy EY and industry body FICCI.
Customer information, financial data and strategic plans of companies are the three most valuable pieces of information coveted by cyber criminals, according to the report.
Gloss