KiranaPro CEO Deepak Ravindran has taken to X, alleging that a “deliberate attack” deleted the app’s GitHub repository and AWS data. The app has been inoperable since the attack, although Ravindran claims the company is working on rebuilding from its backups.
Since the breach, the company has been working with cybersecurity experts to investigate the attack and has started notifying affected customers. Some sensitive customer data was also stolen, but the CEO didn’t specify exactly what kind of information was breached. Vulnerabilities exploited in the attack have already been patched, and Ravindran has claimed to unmask the hacker publicly.
KiranaPro’s business model relies on communicating with multiple convenience stores in a given locality, who bid for an order that the winner gets to deliver. The app fulfils over 2,000 orders daily and has roughly 55,000 users. Any sensitive customer data stolen during the attack can be used to carry out identity theft or financial fraud against unsuspecting users.
The nature of the attack wasn’t disclosed, but Ravindran is convinced that the attack was deliberate and personal. The attack also happened the same day the app planned on launching its services in Kashmir, indicating someone with a grudge could indeed be behind the attack.
However, in the absence of more concrete evidence regarding the identity of the hackers, the possibility of a cybercrime group attempting to steal data is still there. Candid.Technology hasn’t observed any major cybercrime or ransomware gangs claiming responsibility for the attack or any hacking forum posts claiming to sell data stolen from KiranaPro.
A hacker being able to wipe entire servers indicates that either KiranaPro wasn’t using best security practices, including implementing two-factor authentication before sensitive server changes go through. However, if KiranaPro was protected and still got breached regardless, it could be facing a much more sophisticated attacker.
In the News: Critical Roundcube webmail flaw went undetected for 10 years
