Groupon reveals security breach in India

By Ammu Kannampilly (AFP), June 29, 2011

NEW DELHI — The Indian subsidiary of online deals giant Groupon has accidentally published email addresses and passwords from its subscriber database, the company and reports said Wednesday.

Groupon said in a statement sent to AFP that it “was alerted to a security issue” affecting its Sosasta.com subsidiary last Friday and that it “corrected the problem immediately.” Sosasta, an online discount portal acquired in January 2011, informed its subscribers Tuesday and posted a message on its Facebook page asking users to “change your Sosasta password immediately.” Daniel Grzelak, founder of the Internet security website shouldichangemypassword.com, found the security breach while running a Google search for publicly available databases of email addresses and passwords. “A few hours and tweaks later, this database came up,” he told the Internet security site risky.biz, which said SoSasta’s database contained information on 300,000 people. “I started scrolling, and scrolling, and I couldn’t get to the bottom of the file. Then I realised how big it actually was.” http://www.google.com/hostednews/afp/article/ALeqM5jQgbRQeK6J24QNP_UeopoN_6abQw?docId=CNG.cbf85dd9aa5819fa0ebda8b3718b31b7.991

 

Advertisements
  1. Leave a comment

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: