New Delhi: The Reserve Bank of India has reportedly expressed concern over the allegations against digital payments company MobiKwik wherein it has been claimed that data of its 11 crore users was breached, and was available on the dark web.
The top bank has warned the company that it will face fines if lapses are found, news agency Reuters reported citing a source with direct knowledge of the situation.
ALSO READ | MobiKwik Data Leak: Wallet App Denies KYC Details Of 11 Cr Users Being Exposed; Know About Controversy
According to the Reuters report, the source privy to the development stated that RBI was "not happy" with MobiKwik's initial response and has asked it to act immediately. The contact has not been named because the discussion with the company was private.
MobiKwik has been mired in controversy as Cybersecurity researchers claimed that a database containing KYC details of nearly 3.5 million MobiKwik users is available for sale on the Dark Web.
Independent cybersecurity researcher Rajshekhar Rajaharia had tweeted in February that data of "11 Crore Indian Cardholder Including personal details & KYC soft copy (PAN, Aadhar etc) allegedly leaked from a company's Server in India. 6 TB KYC Data and 350GB compressed mysql dump".
Restoking the controversy, French researcher who goes by pseudonym Elliot Alderson on Monday shared these claims in a tweet (removed by Twitter) where he wrote, "Probably the largest KYC data leak in history".
CEO Bipin Preet Singh on Tuesday shared a statement on Twitter where he assured the users that MobiKwik accounts and balances are completely safe after revealing that the company plans to bring a third party to conduct a forensic data security audit.
"It is entirely possible that any user could have uploaded her/his information on multiple platforms. Hence, it is incorrect to suggest that the data available on the darkweb has been accessed from MobiKwik or any identified sources," the statement read.
The results of the probe in this matter are being awaited.