Vedantu

Vedantu

An Indian interactive online tutoring platform Vedantu suffered a data breach which exposed the personal data of 687k users.

The JSON formatted database dump exposed extensive personal information including email and IP address, names, phone numbers, genders and passwords stored as bcrypt hashes.

Vedantu investigated the incident, secured its information and notified the impacted individuals.

Source: https://haveibeenpwned.com/PwnedWebsites#NotAcxiom

TPRM report: https://scoringcyber.rankiteo.com/company/vedantu

"id": "ved192231222",
"linkid": "vedantu",
"type": "Data Leak",
"date": "07/2019",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 687000,
                        'industry': 'Education',
                        'location': 'India',
                        'name': 'Vedantu',
                        'type': 'Educational Platform'}],
 'data_breach': {'number_of_records_exposed': 687000,
                 'personally_identifiable_information': ['email addresses',
                                                         'IP addresses',
                                                         'names',
                                                         'phone numbers',
                                                         'genders',
                                                         'passwords stored as '
                                                         'bcrypt hashes'],
                 'sensitivity_of_data': 'Personal Information',
                 'type_of_data_compromised': ['email addresses',
                                              'IP addresses',
                                              'names',
                                              'phone numbers',
                                              'genders',
                                              'passwords stored as bcrypt '
                                              'hashes']},
 'description': 'An Indian interactive online tutoring platform Vedantu '
                'suffered a data breach which exposed the personal data of '
                '687k users. The JSON formatted database dump exposed '
                'extensive personal information including email and IP '
                'address, names, phone numbers, genders and passwords stored '
                'as bcrypt hashes.',
 'impact': {'data_compromised': ['email addresses',
                                 'IP addresses',
                                 'names',
                                 'phone numbers',
                                 'genders',
                                 'passwords stored as bcrypt hashes']},
 'investigation_status': 'Investigated',
 'references': [{'source': 'Cyber Incident Description'}],
 'response': {'communication_strategy': ['Vedantu investigated the incident, '
                                         'secured its information and notified '
                                         'the impacted individuals.']},
 'title': 'Vedantu Data Breach',
 'type': 'Data Breach'}
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.