wordpress blog stats
Connect with us

Hi, what are you looking for?

HDFC Bank’s Database Was Hacked

zSecure, IT security research group, has claimed to have detected vulnerabilities in HDFC Bank‘s website. According to a blog post on zSecure’s security blog, a Hidden SQL Injection Vulnerability was detected by the group on 15th July 2011, that could give hackers access to the bank’s complete database, and lead to confidential user data being compromised. The blog post also features three screen-shots of some MSSQL databases, including a database consisting of information related to the bank’s branches.

The group claims that HDFC Bank took 22 days to respond to it, when it reported the vulnerability to it, and that it was not able to fix it in the first attempt. Later, zSecure sent complete inputs about the vulnerability to the Bank’s security team, after which it was fixed. The group also said that HDFC in its reply mentioned the use of a third-party service provider for its site’s security. Note that MediaNama is unable to verify any of the claims made by zSecure, the authenticity of the screenshots, and whether this level of access indicates a serious security breach.

We do however, feel concerned about access to customers’ bank accounts, since this may lead to not just access to private information but also financial loss, if these reports are true.

Earlier, zSecure had claimed to have detected vulnerabilities in three other Indian websites: Sify.com (screenshots), TimesOfMoney (screenshots)  and brokerage house Sharekhan.com (screenshots), using an SQL injection technique. TimesOfMoney had said that it was protected against any kind of network penetration due to stringent policies followed and that it had once again tested its infrastructure for the named vulnerability, and had seen no evidence of breach.

Other attacks on Indian websites include one on BSNL by the Pakistan Cyber Armyon the Indian Army website and NIC by Anonymous India. Earlier, CCAvenue had denied the authenticity of a hack.

Advertisement. Scroll to continue reading.

Related:
Security Breaches On The Rise: Sulekha, Sify, TimesofMoney, ShareKhan
117 Indian Government Websites Defaced Till July

Written By

MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.

Views

News

India and US come to terms on how to deal with the equalisation levy in light of the impending Global Tax Deal.

News

Find out how people’s health data is understood to have value and who can benefit from that value.

News

The US and other countries' retreat from a laissez-faire approach to regulating markets presents India with a rare opportunity.

News

When news that Walmart would soon accept cryptocurrency turned out to be fake, it also became a teachable moment.

News

The DSCI's guidelines are patient-centric and act as a data privacy roadmap for healthcare service providers.

You May Also Like

News

Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...

Advert

135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...

News

Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...

News

By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to our daily newsletter
Name:*
Your email address:*
*
Please enter all required fields Click to hide
Correct invalid entries Click to hide

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ