According to media reports, India’s leading online shopping app has sent a legal notice to a US security firm demanding that they stop spreading “false” claims that it has been hacked.
Indian financial newspaper Mint says that Paytm Mall has sent the legal notice to Atlanta-based Cyble Inc, which at the end of last month published a blog post (archived here) claiming that the Paytm Group had suffered a “massive data breach” after a hacking group known as “John Wick” had uploaded unauthorised code:
“A known cybercrime group with the alias ‘John Wick’ was able to upload a backdoor/Adminer on Paytm Mall application/website and was able to gain unrestricted access to their entire databases.”
Cyble went on to speculate that the hack might have been assisted by an insider at Paytm Mall.
Furthermore, in its report Cyble said it had been told that the attackers had demanded a cryptocurrency ransom of 10 ETH (approximately US $4,000) be paid.
The blog post clearly wasn’t appreciated by Paytm Mall, which has denied that it has suffered any security breach.
Sign up to our newsletterSecurity news, advice, and tips.
In its legal notice to Cyble, Paytm Mall gives Cyble one week to issue a public statement saying that its blog post was inaccurate, or it will take the matter to court.
The notice also says:
Support the originator by clicking the read the rest link below.