wordpress blog stats
Connect with us

Hi, what are you looking for?

Pine Labs becomes latest victim of ransomware attack, 500,000 unique records exposed: Report

Despite Pine Labs maintaining that its systems were secure, a preliminary investigation revealed that the attack affected financial institutions across India. 

Pine Labs, an Indian merchant company that provides financing and last-mile retail transaction technology, is the latest victim of a ransomware attack, an investigation by Cyble Research Lab has revealed. Pine Labs was attacked by a ransomware group called BlackMatter which has emerged as a new hacking group that extorts huge sums of money. According to the report, 5,00,000 unique records including sensitive information such as phone, name, and email ids were accessed. 

Cyble Research Lab is a global threat intelligence Software as a Service (SaaS) provider that helps enterprises protect themselves from cybercrimes and exposure on the dark web. 

According to cybersecurity firm SophosLab, India tops the list of countries most affected by ransomware attacks. CheckPoint’s report has also indicated that ransomware attacks in India rose by 93 percent in the first six months of 2021. Holding digital information hostage is a popular way for ransomware hackers to get rich since companies are willing to pay huge sums of money to retrieve their data. India doesn’t have a data protection bill yet and there is no recourse for firms or their customers once they are targetted. 

Speaking to Inc42 about the data breach, Sanjeev Kumar, the chief technology officer of Pine Labs said, “We can confidently state that our systems continue to be fully secure and our production systems continue to operate as usual and all customer data is safe.” He also told Inc42 that the data which was breached are 2014 legal business contracts and his organisation is investigating if any user laptop or server was the source of this information. 

Advertisement. Scroll to continue reading.

Details of the ransomware attack

Cyble Research Lab shared the following details about the attack on its website: 

  • The attack came to light after BlackMatter updated its victim list on its website on August 10, 2021. 
  • The initial findings of the investigation indicated that the attack had affected multiple financial institutions that were using Pine Labs services across India 
  • Service and other private agreements between multiple Indian banks/institutions and Pine Labs were exposed. 
  • Multiple financial records were also accessed during the attack.

Recommendations by Cyble Research Lab to protect against cyber-attacks

  • Use the shared Indicators of Compromise (IoCs) to monitor and block malware infection
  • Use strong passwords and enforce multi-factor authentication wherever possible
  • Keep the automated software update feature on your computer, mobile, and other connected devices on 
  • Use a reputed antivirus and Internet security software package on your computer, laptop, and other connected devices
  • Refrain from opening untrusted links and email attachments without verifying their authenticity. 

Ransomware attacks in 2021

  • Domino’s India was a victim of a data breach in which 1 million credit card records and 180 million pizza preferences were up for sale on the dark web. It was later reported that someone was asking for 10 bitcoins, approximately ₹4 crore, for 13TB of data which customers’ names, phone numbers, and email addresses.
  • Upstox’s customer data was being sold on the dark web after a data leak by ShinyHunters. Hackers demanded a ransom of ₹9 crore to not publish the user data. The security breach leaked user data that included names, birthdates, PAN, passports, and photos of user signatures, etc. The security breach was first reported by Rajshekhar Rajaharia, an independent security researcher.
  • Colonial Pipeline Co. was targetted by the DarkSide ransomware group in May this year. The attack caused widespread disruptions to fuel supply in the U.S. East Coast and the company had to pay a $4.4 million ransom in Bitcoin.
  • JBS USA was a victim of a ransomware attack by REvil ransomware group after the Colonial Pipeline attack and had to shut down its operations. It paid a ransom of $11 million.
  • Acer was also targetted by REvil ransomware group in March. The organization didn’t confirm whether it had been a victim of the attack and it’s not clear if it complied with the demand. The ransomware group had demanded a payout of $50 million.
  • Gigabyte was hit by a ransomware attack by the RansomEXX ransomware gang recently. The ransomware gang had threatened that it will leak 112GB of data if the ransom wasn’t paid.

Also Read: 

Have something to add? Post your comment and refer MediaNama to someone. You can find more details here.

Written By

MediaNama’s mission is to help build a digital ecosystem which is open, fair, global and competitive.



The Delhi High Court should quash the government's order to block Tanul Thakur's website in light of the Shreya Singhal verdict by the Supreme...


Releasing the policy is akin to putting the proverbial 'cart before the horse'.


The industry's growth is being weighed down by taxation and legal uncertainty.


Due to the scale of regulatory and technical challenges, transparency reporting under the IT Rules has gotten off to a rocky start.


Here are possible reasons why Indians are not generating significant IAP revenues despite our download share crossing 30%.

You May Also Like


Google has released a Google Travel Trends Report which states that branded budget hotel search queries grew 179% year over year (YOY) in India, in...


135 job openings in over 60 companies are listed at our free Digital and Mobile Job Board: If you’re looking for a job, or...


Rajesh Kumar* doesn’t have many enemies in life. But, Uber, for which he drives a cab everyday, is starting to look like one, he...


By Aroon Deep and Aditya Chunduru You’re reading it here first: Twitter has complied with government requests to censor 52 tweets that mostly criticised...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to our daily newsletter
Your email address:*
Please enter all required fields Click to hide
Correct invalid entries Click to hide

© 2008-2021 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ