Business Standard

Explained: How data breach of Justdial's 100 million users was unearthed

In a stock exchange filing on Thursday, Justdial said there had been no data breach of the 100 million users

Data Breach
Premium

Peerzada AbrarYuvraj Malik Bengaluru
Last Friday, security researcher Rajshekhar Rajaharia was at home, surfing the web. He landed on the website of Justdial, a provider of local search for different services. 

Rajaharia works with several law enforcement agencies to solve cyber security cases. He immediately realised something was wrong. He found the APIs (application programme interfaces) of the tablet version of Justdial’s website was exposed — this made the personal information of 100-odd million users ‘publicly accessible’. 

This included information such as names, e-mail IDs, mobile numbers, genders, dates of birth, addresses, photos and occupations of the users. “Anyone having access to it (APIs)

Don't miss the most important news and views of the day. Get them on our Telegram channel

First Published: Apr 19 2019 | 1:21 AM IST

Explore News

To read the full story, subscribe to BS Premium now, at just Rs 249/ month.

Key stories on business-standard.com are available only to BS Premium subscribers.

Register to read more on Business-Standard.com