Zomato to reach out to 6.6 mn users for security update

Zomato to reach out to 6.6 mn users for security update

"He/she wanted us to acknowledge security vulnerabilities in our system and work with the ethical hacker community to plug the gaps", Zomato wrote in a blog post.

This information includes email addresses and hashed passwords. This HackRead report, which claims to have reviewed a sample of the leaked data, points out that the usernames leaked on the Darknet portal were genuine. "Your payment information is absolutely safe and there's no need to panic", Zomato said in a statement.

"No payment information or credit card data has been stolen/leaked".

The user named "nclay" on the dark web was asking about a thousand dollars to share the information of 17 million users but Zomato has been closely keeping in touch with the hacker and has made him agree to delete all the records and take the sale off the marketplace. "So far, it looks like an internal (human) security breach - some employee's development account got compromised", it said.

Affected users were logged out of the website and app and had their passwords changed as a precautionary measure in response to the attack, which took place earlier this week. Which means it can not be easily converted into plain text by the hackers. "Along with this, the MD5 hashing algorithm is outdated and has been superseded by more cryptographically secure hashing algorithms". "This has happened in the past", Modi informed.

It added that because the passwords are hashed - converted into a meaningless string of numbers that bear no relation to the actual password - the hackers will be unable to access them.

While ZDNet verified a few dozen email accounts associated with the site, a breach notification site Have I Been Pwned's Troy Hunt confirmed 637,340 unique email addresses in the hacked database. Also, the identity of the hacker has been kept confidential. "We are introducing a bug bounty program on Hackerone very soon", the company said in the post.

Zomato Hacked but Millions of Users Passwords are Safe - On Wednesday, restaurant searches and discovered giant Zomato announced that 17 million user records stolen from its database. However, the absolute delight that foodies are, Zomato users have absolutely different concerns, most of which are their food-related inhibitions.