In a statement to IANS, a Paytm Mall spokesperson said that the data of “our users is completely safe” and “claims related to data leak in the year 2020 are completely false and unsubstantiated”.
“A fake dump uploaded on the platform haveibeenpwned.com appears to wrongly alert of a data breach on Firefox browser. We are getting in touch with Firefox and the platform to resolve the matter,” the company spokesperson added.
According to Firefox Monitor, a security tracker by popular web browser Mozilla, “Paytm was breached on August 30, 2020”.
“Once the breach was discovered and verified, it was added to our database on July 26, 2022,” it said.
According to the report, the data compromised included phone numbers, email addresses, dates of birth, genders, geographic locations, income levels, names and purchases of the nearly 3.4 million users.
The breach data was provided by Have I Been Pwned, a website that allows internet users to check whether their personal data has been compromised.
“Though passwords weren’t exposed in this breach, there are still steps you can take to better protect your personal info,” said Firefox Monitor.
Firefox Monitor alerted several affected users, via Have I been pwned website, that their data was compromised during the Paytm breach.
Several Paytm users went to Twitter with screenshots reflecting that they may have been compromised.
Narayanan Hariharan, of NithyaKarma.com, tweeted with a screenshot of him being one of the Paytm breach victims.
“@Paytm data breach. That’s an awful lot of my personal info that Paytm has let out,” he posted.
Another Twitter user said: “@Paytm I have been warned by the Firefox Monitor for data breach. Is it true? Please confirm”.