Upstox alert users to change password after data breach; assures funds, securities are safe

Upstox has alerted its users of a data breach that took place in company's database. The company assures that the users' funds and securities are safe but advises them to change their account password post the attack.

Upstox, an India-based online trading platform, has notified its customers of a security breach in the firm's database. The breach affected data, including contact and KYC details of Upstox customers. The company, however, assured users that their funds and securities are safe. The Upstox has gained traction among users lately with an ad campaign running during the cricket IPL 2021 season. The breach came to light through emails sent to Upstox by the perpetrator. On receipt of these emails claiming unauthorised access into its database, the company has now appointed "a leading international cyber-security firm" to investigate possibilities of the breach. In an email to PTI, a company spokesperson explains that the breach is around some KYC data stored in third-party data warehouse systems. Early on Monday, the hackers even put up a sample of the breached data on the dark web.