The dark web, or the deep web as some might call it, is a place on the Internet where most users have never ventured. It’s also a place filled with illegal activity as hackers and other criminals seek buyers of their latest catch.
Recently, a hacker and a vendor who goes by the name ‘nclay’ claims to have hacked a company known as Zomato and is selling 17 million data linked to registers users from the same company. We understand ‘nclay’ is selling the data on one of the popular marketplaces found on the deep web.
According to a report from HackRead, the data in question consists of passwords hashes and emails of all 17 million registered users. Furthermore, the hacker has chosen to sell the entire package for the cool price of $1,001.43.
To prove the legitimacy of his claim, the hacker decided to share a sample data for public viewing to HackRead. The publication went on to investigate the claim and concluded that each account on the list is registered to Zomato.
This is a huge blow to Zomato and all of its registered users. There’s a good chance some might feel inclined to step away from the company due to its relatively weak security.
Hey, what is Zomato all about?
With 120 million users visiting the site on a monthly basis, we’re sure most many folks will have an idea of what Zomato is all about. The company’s primary goal is making it easier for citizens of Florida in the United States, to locate the best restaurants, bars, and cafes.
By taking advantage of the app for both iOS and Android, users have the option to order food online whenever they want.
The company was hacked in the past
This isn’t the first time Zomato fell victim to hackers. Back in 2015, an Indian hacker known as Anand Prakash, gained broke the firm’s security and gained access to its data. He did the right thing by calling the food search company to inform them of the breach in hopes they would move quickly to put a lid on things.
“Over 120 million users visit Zomato every month. What binds all of these varied individuals is the desire to enjoy the best a city has to offer, in terms of food. When Zomato users trust us with their personal information, they naturally expect the information to be safeguarded. And that’s something we do diligently, without fail. We take cyber security very seriously – if you’ve been a regular at Zomato for years, you’d agree,” according to a company blog post.
Users should move quickly to change their passwords before criminals take advantage of the breach. Now, the passwords are hashed, which means, it will take some time before hackers can convert them to plain text. Still, it’s best to act now before it’s too late.
The good news?
Payment and credit card information are kept separate from login data, so as of right now, your credit card data is safe.