According to sources, the team demanded 10 Ethereum, or about $ 4.000 as ransom, which it will soon receive as claimed by Paytm Mall. The John Wick team also claimed that the breach took place internally.
A spokesman for Paytm Mall said both the user details and the data of the company, is safe. The spokesman added that the company is investigating the allegations of "possible data breach", but has not yet discovered "any data loss". Paytm Mall runs a program Bug Bounty in which it rewards the “responsible disclosure of any security risks. "We work extensively with the security research community to address security gaps."
This is not the first mention of Paytm. In 2018, an employee of the company, Sonia Dhawan, managed to steal personal data of the CEO, Vijay Shekhar Sharma and tried to extract 10 million Rs.
Earlier this month, the Ahmedabad Cyber Crime Branch arrested two people for allegedly cheating users in different states, under the pretext of informing Paytm's KYC. Police found Rs 58,20m in the defendants' various bank accounts.
The team hacking uses other aliases such as South Korea and HCKINDIA, according to Cyble. "One of the tactics used by this group is to act as a gray hat hacker and offer help to companies or victims to correct their mistakes." Zee5, SquareYards, Stashfin, Sumo Payroll, Square Capital, i2ifunding, e27 etc. have also been targets of the hacking team in the past.