Threat Actor: Unknown | unknown
Victim: Major Indian Car Dealer | Major Indian Car Dealer
Price: $2 million
Exfiltrated Data Type: KYC information, CIBIL data, internal communications, financial records, API logs
Key Points :
- The company was established in 2015 and has a net worth of $2 billion.
- It operates as an online buyer and seller of used cars with headquarters in India and operations in Thailand, UAE, and Australia.
- The threat actor claims to have obtained KYC information for 70,000 customers in the UAE.
- CIBIL data for 1.8 million users in India is also reported to be compromised.
- The actor has access to certain systems belonging to the company and is demanding a ransom for the data.
- A limited sample of the data has been provided to support their claims.
A threat actor claims to have obtained a vast amount of data from a prominent Indian automobile dealer. The company, established in 2015 with a net worth of $2 billion, operates as an online buyer and seller of used cars, with headquarters in India and operations in Thailand, UAE, and Australia. The breached data reportedly includes:
- KYC information for 70,000 customers in the UAE (bank statements, driver’s licenses, Emirates IDs, passports, etc.)
- CIBIL data for 1.8 million users in India (name, date of birth, address, email, phone number, credit score, etc.)
- Limited KYC details of citizens from Thailand and Australia
- Internal communication emails
- Financial records of the organization
- API logs
The threat actor also claims to have access to certain systems belonging to the company. They demand that the organization repurchase their data; otherwise, it will be auctioned off. The actor has provided a limited sample to support their claim.
The post Threat Actor Claims to Sell Data of India’s Largest Automobile Dealer appeared first on Daily Dark Web.
Views: 0