Upstox experiences a data breach | CyberNews | April 2021

Upstox Breach

Another day, another breach, this time its with an Indian Online Share/Stock Trading app Upstox, leading to exposure of sensitive information of 25 lakh users. The actual date of breach is unclear yet but researcher Rajshekhar Rajaharia was first to report it on 11 April, which included things like name, DoB, bank info, email address and 56 million KYC records. It mainly happened due to a misconfigured AWS server. This is not a new news as many companies, Indian and MNC, have been experiencing increased cyber attacks.

Company has informed that they have hardened their systems and that no money has been moved from any user. Users can reset their passwords, enable MFA (if available), suspect each mail as phishing attempt as a precaution.