Tech & Society

No love lost: Zomato business unaffected by May data breach

India born Zomato announced they reached three million orders in a single month, still going strong months after suffering from a massive data leak in May.

Though a restaurant platform designed to consolidate restaurant reviews and facilitate online ordering didn’t sound like a prime target for a hack, they confirmed the breach on their blog on May 18. Zomato’s customer databases were hacked and the perpetrator accessed emails, names and hashed passwords for 17 million accounts. Though luckily payment information was not compromised.

Reportedly, the company was able to negotiate with the unnamed hacker to prevent misuse of the information, which was going to be sold on a dark web marketplace. The hacker was said to embrace ethical hacking standards and accepted to take down and destroy the data in exchange for Zomato’s sponsorship of a bug bounty program on Hackerone.

The breach involved at least 6.6 million email and password hash combinations. Password hashes are vulnerable to brute-force attacks that can potentially reveal the passwords. When considering that people tend to use the same password across many online services, data breaches can be devastating for affected users.

While Zomato has taken steps to fix the vulnerability that enabled the hacker to access their system, the problem has deeper roots. “Password-secured security solutions have quickly become outdated, leaving millions of businesses vulnerable to breaches”, said Leonardo Cooper, CEO of cyber security company Vault One. As new no-password technologies such as blockchain become the standard, security is expected to increase in both business and private environments.

Nonetheless, Zomato continues to attract attention in the ultra competitive foodtech sector. Since last year it has made great improvement toward profitability as it is getting more visitors and orders, decreasing cash burning, and surviving many other startups—all while staying away from new funding.

Back in May 2016, HSBC Securities & Capital Markets cut Zomato’s valuation by 50% in light of non-profitable operations in all 23 countries it operates in; today, Zomato makes a profit in 11 of them.

Even the most loved startups face setbacks they must overcome, and Zomato is no exception. While the shadow of a data leak remains a dark spot on their history, their sustained deliveries and will to survive show that users will forgive your sins—as long as you have a great product.

 

Daniel Sanchez

Hailing from the Caribbean coast of Colombia, Daniel is a writer and freelance translator with a background in biology. When not word-smithing, you will probably find him chasing frogs somewhere around the tropical belt.

Recent Posts

Outbound & inbound: Indian tie ups with Singapore, Indonesia, & Australia while Philippines meets Indian business group

The Tech Panda takes a look at how Indian companies are partnering with foreign businesses…

7 hours ago

Investment temperament: NFO for 5 index funds, health funds for Early to Late-Stage Capital & to transform India’s healthcare landscape

The Tech Panda takes a look at the investment temperament in the Indian startup ecosystem.…

1 day ago

Tweets, tips & trading: X doubles down on payments power play

Big Tech is no longer content with just running user feeds, they want wallets too.…

1 day ago

PayPal World: Swipe right on global shopping

Indian shoppers could be shopping internationally using their UPI accounts sitting at home, thanks to…

4 days ago

Cheaper OTPs, smarter chats: WhatsApp takes aim at SMS dominance

The SMS as a tool to connect with customers might be coming to an end.…

4 days ago

Will our fintechs become our mobile service providers?

Looks like finance and connectivity will come together soon in our devices. Recently, UK fintech…

4 days ago