boAt Suffers Major Data Breach: 7.5 Million Users’ Data Stolen

by
Krishi Chowdhary
from Techreport on (#6KXXD)
boAt-1200x588.jpg
  • Popular Indian smartwatch and audio device manufacturer, boAt, has been hit by a major data breach
  • Personal details of 7.5 million users have been stolen and are now being sold on the dark web
  • A hacker by the name of ShopifyGUY has claimed responsibility for the attack

boAt-300x147.jpg

boAt has suffered a major data breach in which the data of 7.5 million users were stolen and is now up for sale on the dark web. The stolen data includes the name, address, email ID, contact number, and customer ID of the users. Overall, around 2GB of data has been stolen from the company.

As per IDC (International Data Corporation), boAt became the 2nd most popular wearable brand in the third quarter of 2023.

The report of the attack was first published by Forbes but was later confirmed through interaction with customers who have purchased boAt products.

A hacker by the name of ShopifyGUY has claimed responsibility for the attack. This is a relatively new hacker - we didn't find any records of any other data breaches that they might have done.

boAt was founded by Indian Shark Tank judge Aman Gupta, and Sameer Mehta in 2016. It is Indias fastest-growing audio and wearables brand.Timeline & impact of the breach

The news was made public yesterday but experts believe that data was compromised at least a month ago. Speaking of the impact, these types of massive data breaches have long-term effects.

The data is available for just 8 credits online. This means that for just 2 Euros, anyone can have the information of the victims. After a few days, the data might even surface on Telegram for free.

After the initial loss of personal information, customers need to worry about fraud, scams, and phishing attempts in the coming days.

Considering the type of data stolen, identity theft and financial fraud are also some possibilities. Scammers might also create fake profiles using the stolen credentials and then target friends and acquaintances of the victims by impersonating them.

As for the company, the consequences will be equally severe.

The consequences for companies include a loss of customer confidence, legal consequences, and reputational harm. The major implications make it even more essential to implement adequate security practices.Researcher Saumay Srivastava from Threat IntelligenceboAt's response & the next course of action

boAt has neither responded to our request for comment nor made any official statement about the incident yet.

However, Security Brigade founder, Yash Kadakia, has some suggestions.

  • He feels the first step should be to notify the affected customers and see if there's anything they can do to reduce the damage.
  • Next, a thorough investigation should be conducted to find how the hacker got access to the company's internal network and what else might have been compromised.
  • It's important to gauge the extent of the attack to minimize the damage.
  • Last but not least, the company also needs to revamp its security measures to prevent another attack in the future.

The post boAt Suffers Major Data Breach: 7.5 Million Users' Data Stolen appeared first on The Tech Report.

External Content
Source RSS or Atom Feed
Feed Location https://techreport.com/feed/
Feed Title Techreport
Feed Link https://techreport.com/
Reply 0 comments