All information, news, offers of Telecommunication in Nepal

Alleged eSewa Data Leaks; What We Know So Far!!

The trend for the data leak from hackers is on the rise these days. It seems eSewa or its users have allegedly become the latest victim of such data breach after Foodmandu and Vianet‘s catastrophic leak. A hacker who goes by the name of Aparichit (in Twitter) has released a snapshot of data which contains the email address, password’s initial letters, and the balance info of some users. Find the official release of eSewa on this claimed hack below.

As per the hacker’s tweet, the data breach was possible due to the absence of OTP authentication in Web login. The hackers also claim it to be just a demo for the data, so chances are he/she could have hacked more customer’s data.

esewa hack

The hack or data leaks seem valid as eSewa had also asked for the user to compulsorily change their password last night. When we checked our account for the web-login now, we found that they made it mandatory to reset the password by sending an email with a link.

As we see the email addresses and the initial password letters of some users, the hack or compromise of data seems real. The real question is now whether it is just a hoax or some bug in eSewa system!!

eSewa data hacker Aparichit tweet

As we doubted about the biggest digital payment platform in Nepal having such a loophole, eSewa now publishes its official release for this matter. Where they say, the misleading information about the eSewa data hack on social network sites brings their attention.

eSewa official statement on the data breach

As per the official release, eSewa terms the purported hacker to have collected the customer’s data via Phishing scam from social networking sites. eSewa says “As we have found out this scam for few users, we have requested our customers who use the web browsers, to change their password immediately”.

eSewa hack official statement

The company also wants to assure people of their data to be secured by all means as they have certification of ISO 27001:2013. The global certification means their data security is quite trustworthy and have build the required infrastructure needed for such cyber security standards.

Finally, they request their customers to secure their password, OTP (one time password) and change their password frequently.

So, we suggest you not to leave your account as it is. It is better to save yourself (no matter if the alleged hack is a hoax) by changing your web login password immediately.

Tell us what do you think of the claim of eSewa’s data breach by the hacker, in the comment below?

Latest Gadget Deals 📣

Apple Macbook Air
Shop on Daraz & Get 1 Year Brand Warranty + 14 Day Easy Return, Free Shipping & More | Shop Now
Rs. 159,900
Buy Now
realme 10 Pro Plus
Exclusive Launch on Daraz | Prebookings have begun | Voucher Discount of Rs. 2000 for first 50 customers
Rs. 45,999
Buy Now
GoPro Hero 11
Certified Daraz Mall Store| 14 Day Easy Return | Free Shipping | 1 Year Brand Warranty
Rs. 83,500
Buy Now

Follow us on Facebook, Twitter, and Viber to get the latest news, and information about Nepal Telecom, Ncell, Smart Cell, ISPs, mobile apps, and phones in Nepal.


You might also like

Comments are closed.

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More

Privacy & Cookies Policy