One of India’s most popular music streaming service, Gaana.com, has been reportedly hacked. The site is currently down for maintenance, with no official statement given out yet. A Pakistan-based hacker has claimed responsibility for the hack and claims details of 10 million users including their email address, date of birth and other information has been scraped and made available in a searchable database. Also Read - Gaana launches TikTok-like short video platform 'HotShots': How to use
The hacker, Mak Man, claims he can get all details of users by entering an email address. He claims his exploit has given him access to information about 10 million users of the service. Of course, the claims remain unverified at the moment. Also Read - Resso takes on JioSaavn, Gaana, Spotify and Apple Music with social connect
Also Read - JioSaavn and Gaana+ annual subscription discounted by over 70 percent, now costs just Rs 299
We are awaiting an official statement from Times Internet Limited, which owns Gaana. In the meanwhile, if you are registered on Gaana.com, it would be a good idea to change your credentials if you use them anywhere else.
This is what Times Internet Limited CEO Satyan Gajwani has to say about the Gaana.com hack.
A couple of hours ago, a hacker name MakMan exposed a vulnerability in one of our Gaana user databases. Here’s where things stand: 1/n
— Satyan Gajwani (@satyangajwani) May 28, 2015
First of all, we have patched the vulnerability within an hour of its discovery, as MakMan has also acknowledged. 2/n — Satyan Gajwani (@satyangajwani) May 28, 2015
No financial or sensitive personal data beyond Gaana login credentials were accessed. No third party credentials were accessed either. 3/n — Satyan Gajwani (@satyangajwani) May 28, 2015
As we understand, the data has not been accessed or shared with anyone; MakMan was highlighting the issue, which we’ve recognized. 4/n
— Satyan Gajwani (@satyangajwani) May 28, 2015
Most of our users’ data has not been compromised, but we’ve reset all Gaana user passwords, so all users have to make new ones. 5/n
— Satyan Gajwani (@satyangajwani) May 28, 2015
Yep, it’s a pain, but it’s important. 6/n — Satyan Gajwani (@satyangajwani) May 28, 2015
Finally, security is a major focus for us, and we are further strengthening our user security team. 7/n — Satyan Gajwani (@satyangajwani) May 28, 2015
We’ve asked Makman if he’d be willing to work with us and help us find any other issues as well. https://t.co/8txhpbKGVc 8/n
— Satyan Gajwani (@satyangajwani) May 28, 2015