X

我们使用cookie,以确保适合你的经验

我们用饼干和其他跟踪技术来提高你的浏览体验在我们的网站上,显示个性化内容和有针对性的广告,分析网站流量,并理解我们的观众来自哪里。你也可以阅读我们的隐私政策,我们使用cookie来确保你在我们的网站上的最好的体验。

选择我接受,或继续在网站上,你同意我们使用饼干条款和条件

得到应用
\"<p>Illustration:
Illustration: Rahul Awasthi<\/span><\/figcaption><\/figure>Hyperlocal delivery startup Dunzo<\/a> announced on Saturday a security breach<\/a> of one of its databases that has exposed phone numbers<\/a> and email IDs<\/a> of its users.

Dunzo CTO Mukund Jha wrote in a blog post<\/a> that initial results of an internal investigation suggests that servers of a third party that Dunzo works with were compromised, and this contained phone numbers and email addresses of Dunzo users.

\"No payment information<\/a> like credit card numbers was compromised as we do not store this data on our servers,\" Jha said.

The concierge services app, which is backed by Google<\/a> as one of its investors, has recently seen increased adoption for its delivery services post Covid-19.

The startup didn’t reveal details of the third-party service provider in question and when the breach had occurred.

A spokesperson for Dunzo clarified that the app has an OTP-based login system and hence does not store any password in its servers. So there is no breach of user passwords, the spokesperson said.

\"We’ve always taken safety very seriously and we’re sorry that this happened. Our team is doing everything we can to ensure we make this right,\" Jha noted.

Dunzo added that it has taken \"all necessary steps\" to resolve the security breach including securing databases, tightening infrastructure security, updating passwords and access tokens as a precautionary measure, and closing all vulnerable access ports, among others.

Dunzo also urged users to write to them directly at datasec@dunzo.in for any queries.

While a few Dunzo users took to social media to share snapshots of email from the startup about the breach, Dunzo has not yet recommended to change their passwords, as per the communication.

Niranjan Patil, a cybersecurity professional, who shared one such communication on Twitter, noted that it was \"refreshing to see an upfront and detailed note from an Indian business on a data breach<\/a>.\"

He also appreciated Dunzo for the intimation to users.

Cybersecurity professional and co-founder of Lucideus Rahul Tyagi said third-party data breaches are one of the topmost concerns for organizations after human-related data breaches with leakage of user’s personal information like email, username, mobile number etc. becoming very common.
<\/body>","next_sibling":[{"msid":76918854,"title":"A bridge too far? Aarogya Setu, \u200bIndia's gamechanger app, is losing its charm","entity_type":"ARTICLE","link":"\/news\/a-bridge-too-far-aarogya-setu-indias-gamechanger-app-is-losing-its-charm\/76918854","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[{"msid":"76908300","title":"dunzo","entity_type":"IMAGES","seopath":"business\/india-business\/dunzo-security-breach-exposes-users-phone-numbers-email-ids\/dunzo","category_name":"Dunzo security breach exposes users' phone numbers, email IDs","synopsis":false,"thumb":"https:\/\/etimg.etb2bimg.com\/thumb\/img-size-74409\/76908300.cms?width=150&height=112","link":"\/image\/business\/india-business\/dunzo-security-breach-exposes-users-phone-numbers-email-ids\/dunzo\/76908300"}],"msid":76918864,"entity_type":"ARTICLE","title":"Dunzo security breach exposes users' phone numbers, email IDs","synopsis":"Hyperlocal delivery startup Dunzo announced on Saturday a security breach of one of its databases that has exposed phone numbers and email IDs of its users.","titleseo":"telecomnews\/dunzo-security-breach-exposes-users-phone-numbers-email-ids","status":"ACTIVE","authors":[{"author_name":"Sindhu Hariharan","author_link":"\/author\/479252724\/sindhu-hariharan","author_image":"https:\/\/etimg.etb2bimg.com\/authorthumb\/479252724.cms?width=100&height=100","author_additional":{"thumbsize":false,"msid":479252724,"author_name":"Sindhu Hariharan","author_seo_name":"Sindhu-Hariharan","designation":"Staff Reporter","agency":false}}],"Alttitle":{"minfo":""},"artag":"TNN","artdate":"2020-07-12 11:13:27","lastupd":"2020-07-12 11:14:07","breadcrumbTags":["security breach","dunzo","email IDs","data breach","phone numbers","users' phone numbers","google","payment information","Internet","Apps"],"secinfo":{"seolocation":"telecomnews\/dunzo-security-breach-exposes-users-phone-numbers-email-ids"}}" data-authors="[" sindhu hariharan"]" data-category-name="" data-category_id="" data-date="2020-07-12" data-index="article_1">

Dunzo安全漏洞暴露用户的电话号码、电子邮件id

地方性交付启动Dunzo周六宣布它的一个数据库的安全漏洞暴露用户的电话号码和电子邮件id。

信德Hariharan
  • 更新于2020年7月12日上午十一14坚持
< p >说明:拉胡尔Awasthi < / p >
说明:拉胡尔Awasthi
地方性交付启动Dunzo周六宣布安全漏洞它的一个数据库,暴露了电话号码电子邮件id它的用户。

Dunzo CTO Mukund Jha在一篇博客文章中写道最初的一项内部调查的结果表明,第三方的服务器Dunzo与妥协,这包含Dunzo用户的电话号码和电子邮件地址。

“不支付信息比如信用卡号码是破坏我们不存储这些数据在我们的服务器上,”杰哈说。

礼宾服务的应用程序,这是支持的谷歌作为一个投资者,最近看到增加了其交付服务发布Covid-19收养。

广告
启动第三方服务提供者的没有透露细节问题,当违约发生。

Dunzo发言人澄清说,这个应用程序有一个OTP-based登录系统,因此并不在其服务器上存储任何密码。所以没有违反用户密码,发言人说。

“我们一直非常重视安全,我们很抱歉,这发生了。我们的团队是尽一切努力确保我们做这个吧,”贾说。

Dunzo补充说,它已采取“一切必要措施”解决安全漏洞包括保护数据库,加强基础设施安全、更新密码和访问令牌作为防范措施,并关闭所有脆弱的访问端口,等等。

Dunzo还敦促用户直接在datasec@dunzo写信给他们。任何疑问。

而几Dunzo用户走上社会媒体分享电子邮件从启动的快照,Dunzo尚未建议更改密码,按照通信。

Niranjan帕蒂尔,网络安全专家,他在Twitter上分享这样的一个沟通,指出,这是“惊喜地看到一个前期和详细的注意从一个印度业务数据泄露”。

他还赞赏Dunzo暗示给用户。

网络安全专业和联合创始人Lucideus拉胡尔Tyagi说第三方数据泄露是最高的问题之一组织人为数据泄露后泄漏用户的个人信息,如电子邮件、用户名、手机号等变得非常普遍。
  • 发布于2020年7月12日上午11:13坚持
是第一个发表评论。
现在评论

评论

现在评论 阅读评论(1)

加入2 m +行业专业人士的社区

订阅我们的通讯最新见解与分析。乐动扑克

下载ETTelec乐动娱乐招聘om应用

  • 得到实时更新
  • 保存您最喜爱的文章
扫描下载应用程序
  • 乐动扑克
  • Dunzo安全漏洞暴露用户的电话号码、电子邮件id
\"&lt;p&gt;Illustration:
Illustration: Rahul Awasthi<\/span><\/figcaption><\/figure>Hyperlocal delivery startup Dunzo<\/a> announced on Saturday a security breach<\/a> of one of its databases that has exposed phone numbers<\/a> and email IDs<\/a> of its users.

Dunzo CTO Mukund Jha wrote in a blog post<\/a> that initial results of an internal investigation suggests that servers of a third party that Dunzo works with were compromised, and this contained phone numbers and email addresses of Dunzo users.

\"No payment information<\/a> like credit card numbers was compromised as we do not store this data on our servers,\" Jha said.

The concierge services app, which is backed by Google<\/a> as one of its investors, has recently seen increased adoption for its delivery services post Covid-19.

The startup didn’t reveal details of the third-party service provider in question and when the breach had occurred.

A spokesperson for Dunzo clarified that the app has an OTP-based login system and hence does not store any password in its servers. So there is no breach of user passwords, the spokesperson said.

\"We’ve always taken safety very seriously and we’re sorry that this happened. Our team is doing everything we can to ensure we make this right,\" Jha noted.

Dunzo added that it has taken \"all necessary steps\" to resolve the security breach including securing databases, tightening infrastructure security, updating passwords and access tokens as a precautionary measure, and closing all vulnerable access ports, among others.

Dunzo also urged users to write to them directly at datasec@dunzo.in for any queries.

While a few Dunzo users took to social media to share snapshots of email from the startup about the breach, Dunzo has not yet recommended to change their passwords, as per the communication.

Niranjan Patil, a cybersecurity professional, who shared one such communication on Twitter, noted that it was \"refreshing to see an upfront and detailed note from an Indian business on a data breach<\/a>.\"

He also appreciated Dunzo for the intimation to users.

Cybersecurity professional and co-founder of Lucideus Rahul Tyagi said third-party data breaches are one of the topmost concerns for organizations after human-related data breaches with leakage of user’s personal information like email, username, mobile number etc. becoming very common.
<\/body>","next_sibling":[{"msid":76918854,"title":"A bridge too far? Aarogya Setu, \u200bIndia's gamechanger app, is losing its charm","entity_type":"ARTICLE","link":"\/news\/a-bridge-too-far-aarogya-setu-indias-gamechanger-app-is-losing-its-charm\/76918854","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[{"msid":"76908300","title":"dunzo","entity_type":"IMAGES","seopath":"business\/india-business\/dunzo-security-breach-exposes-users-phone-numbers-email-ids\/dunzo","category_name":"Dunzo security breach exposes users' phone numbers, email IDs","synopsis":false,"thumb":"https:\/\/etimg.etb2bimg.com\/thumb\/img-size-74409\/76908300.cms?width=150&height=112","link":"\/image\/business\/india-business\/dunzo-security-breach-exposes-users-phone-numbers-email-ids\/dunzo\/76908300"}],"msid":76918864,"entity_type":"ARTICLE","title":"Dunzo security breach exposes users' phone numbers, email IDs","synopsis":"Hyperlocal delivery startup Dunzo announced on Saturday a security breach of one of its databases that has exposed phone numbers and email IDs of its users.","titleseo":"telecomnews\/dunzo-security-breach-exposes-users-phone-numbers-email-ids","status":"ACTIVE","authors":[{"author_name":"Sindhu Hariharan","author_link":"\/author\/479252724\/sindhu-hariharan","author_image":"https:\/\/etimg.etb2bimg.com\/authorthumb\/479252724.cms?width=100&height=100","author_additional":{"thumbsize":false,"msid":479252724,"author_name":"Sindhu Hariharan","author_seo_name":"Sindhu-Hariharan","designation":"Staff Reporter","agency":false}}],"Alttitle":{"minfo":""},"artag":"TNN","artdate":"2020-07-12 11:13:27","lastupd":"2020-07-12 11:14:07","breadcrumbTags":["security breach","dunzo","email IDs","data breach","phone numbers","users' phone numbers","google","payment information","Internet","Apps"],"secinfo":{"seolocation":"telecomnews\/dunzo-security-breach-exposes-users-phone-numbers-email-ids"}}" data-news_link="//www.iser-br.com/news/dunzo-security-breach-exposes-users-phone-numbers-email-ids/76918864">