In April 2021, Upstox, an Indian brokerage firm, experienced a significant data breach. The breach resulted in the exposure of highly sensitive personal information belonging to over 100,000 customers. The compromised data included names, genders, dates of birth, physical addresses, banking information, and passwords stored as bcrypt hashes. Furthermore, extensive "know your customer" (KYC) information was also exposed, including scans of bank statements, cheques, and identity documents, complete with Aadhaar numbers. This incident highlighted the importance of robust security measures and privacy safeguards within the financial industry.
Compromised data: Bank account numbers, Dates of birth, Email addresses, Family members names, Genders, Government issued IDs, Income levels, Marital statuses, Nationalities, Occupations, Passwords, Phone numbers, Physical addresses
Compromised data: Bank account numbers, Dates of birth, Email addresses, Family members names, Genders, Government issued IDs, Income levels, Marital statuses, Nationalities, Occupations, Passwords, Phone numbers, Physical addresses