Cyble claims that a cybercrime group with the alias ‘John Wick’ was able to penetrate the Paytm Mall and upload a backdoor on Paytm app/website. The cybercriminals reportedly demanded a ransom in exchange for the data. Cyble sources have forwarded them a message where perpetrators claimed that they were receiving the ransom payment.
The cybercrime group has another alias such as ‘South Korea, or ‘HCKINDIA’. Paytm Mall’s spokesperson claims that these claims are absolutely false. The company assures that the user data is completely safe and secure. The company said that it has investigated the claims of possible cyber attack and data break but found nothing.
On the contrary, Cyble’s sources have forwarded a message where the perpetrators claimed of receiving the ransom payment from Paytm Mall. The attackers have demanded 10 ETH (equivalent to $4000) The cybersecurity firm added that the data breach may have affected all the accounts and related information on the platform.
Paytm Mall spokesperson said, “We invest heavily in our data security, as you would expect. We also have a Bug Bounty programme, under which we reward responsible disclosure of any security risks. We extensively work with the security research community and safely resolve security anomalies.”
Even last year, Paytm group had faced a fraud allegedly caused by its employees. The Covid-19 pandemic has forced users to heavily depend on internet-enabled solutions. This increased use of mobile and internet-enabled services has created an opportunity for cybercriminals to organise planned attacks.