Experts Reacted On Payment Processor Juspay Leaks 100 Mil+ Cardholders’ Data

Cybersecurity researcher Rajshekhar Rajaharia disclosed the discovery of a breach of Juspay revealing the data of over 100 million credit and debit card users, including their full names, phone numbers, email addresses, and the first and last four digits of their cards. E-merchants such as Amazon use its payments services.

Subscribe
Notify of
guest
1 Expert Comment
Newest
Oldest Most Voted
Inline Feedbacks
View all comments
Saryu Nayyar
Saryu Nayyar , CEO
InfoSec Expert
January 5, 2021 6:21 pm

<p>The Juspay breach shows that 2021 is starting off Business as Usual for malicious actors, with long dwell times between intrusion and discovery.  While some of the data in this breach were obfuscated, there is a very real possibility that the attackers could overcome the obfuscation.  Even if they don\’t, the stolen information could be used for sophisticated social engineering or spear-phishing attacks.</p> <p>&nbsp;</p> <p>Perhaps the biggest concern is the dwell time.   The breach happening mid-August 2020 and only being reported now, indicates there may have been some gaps in Juspay\’s security stack or their security operations process.</p> <p style=\"margin: 0cm; background: white;\"><span style=\"font-family: \’Arial\’,sans-serif; color: #500050;\"> </span></p>

Last edited 1 year ago by Saryu Nayyar
1
0
Would love your thoughts, please comment.x
()
x