MobiKwik denies data breach even as users share ‘evidence’ on Twitter

Gurugram-based fintech startup MobiKwik has found itself at the receiving end of some angry users on Twitter for allegedly hiding a data breach involving over 10 crore users. MobiKwik on March 4 has denied allegations of a reported data breach and claimed that “a media-crazed so-called security researcher” reported a false case of cybersecurity to grab media attention. The company had also assured that user data was secure and there were no security lapses at their end.
Almost a month later, MobiKwik has issued another statement and said that the company is investigating this…and it will get a third party to conduct a forensic data security audit.” This development comes after users started to post screenshots of text files revealing user details.
As far as the “so-called security researcher” is concerned, his name is Rajshekhar Rajaharia and he was among the first to notify MobiKwik about the security breach. He claimed that the company did not respond to him initially. He says that it was only after his tweet went viral that the company issued a statement denying the security breach claim on March 4.