Cyble (1), the data, and cybersecurity company mentioned that the internal and server data of a Gurugram-based Health Insurance company, Religare (2), has lost approximately 5 million records, which has been put up for sale in the dark web. Cyble also claimed that this hacked data consisted of the private details of Religare, its workers, agents, and other sensitive information of the company’s clients.
According to Cyble, this leaked database also contains sensitive details about the insurance policies like the customer ID, start date, end date, policy number, sum, and renewal amount of system, and many more.
Besides this, the private details of the agents and even the employees have been leaked. This includes their full name, address, mobile number, date of birth, usernames, and many more. However, even after this deadly fiasco, Religare still declines to comment on this report.
These leaks are putting many customers of Religare at risk of multiple phishing attacks.
Religare phishing attack: Further details
India is facing a lot of phishing attacks and other cyber threats recently. This includes KYC frauds too.
Cyble also added that a known South Korean threat actor might be responsible for the breach. This prediction based on their history as this South Korean hacker has breached many big companies like Zee5 Network and e27.
The CEO of Cyble mentioned that Religare should consider investigating this massive breach and take immediate action. Moreover, the company should also focus on consoling and giving hope to the customers.
Before this, Cyble has also notified data breaches of many huge companies like Truecaller, Unacademy, Naukri.com, Bharat Earth Movers Limited (BEML), and many more. While Unacademy and BEML accepted this data breach, the rest of the companies denied it completely.