The unexpected breach for an online shop
An Indonesian E-commerce giant, Tokopedia reportedly encountered a Data breach as per their spokesperson, Nuraini Razak on Saturday. The leaked data of 15 million users of Tokopedia includes full names, usernames, emails, phone numbers and hashed passwords of their customers. Tokopedia ensures that the hackers won’t be able to crack the hashed password immediately as they were not able to obtain the critical feature.
Payment related information such as credit card, debit card, and e-wallet information were fortunately not included in the breach.
The e-commerce giant tells its customers to secure their accounts for the time being, by immediately changing their account passwords to prevent the hackers from successfully accessing their account even with their encryption method in place.
The hashed password is secured with the SHA2-384 hash algorithm. SHA stands for Secure Hashing Algorithm that is being used for cryptographic security.
The hacker claims that they only took a small part of the site’s entire database back in March 2020. The leaked data against the official website of Tokopedia is actively making the rounds.
The database that includes 91 million data of Tokopedia customers were reportedly being sold in the Dark Web for a whopping amount of US $5,000.
As per Tokopedia, they are still investigating the said breach.
What is the deal with Tokopedia?
Tokopedia is an Indonesian E-commerce platform that has been around since 2009. The brand is known as the most visited e-commerce website in Indonesia, with a total average of 65,953,400 monthly visitors between July and September in 2019.
Undoubtedly, online shopping is now one of the most utilized methods in purchasing essential goods primarily in the COVID-19 situation that we are all encountering now. Most people rely on online shopping because of the overall convenience it brings. One can just add goods in their carts by just tapping on their smartphones, and it will be delivered directly on their doorsteps.
Indeed that securing one’s information is more vital than ever because of today’s ever-evolving technology.
Companies that offer such business stores millions of their customer’s crucial information by using the cloud for their database. Whichever method they want to wield, they should always appraise that securing the vital data of their customers must be one of their prime priorities.