24GB of user data had been put up for sale online in a data leak from Sumo Payroll, Squareyards, and Stashfin.

By: Khagesh KG
December 15 2021

Share Article:

Cyble reported a security breach to three companies, but the companies have not affirmed the violation. Further investigation/confirmation is needed. Cyble, an organization specializing in cyber and risk intelligence, in a blog post, stated that it had identified hackers known as South Korea who breached SquareYards, Sumo Payroll, and Stashfin's data. The breaches occurred in early 2020. Square Yards is a real estate E-commerce website. Sumo Payroll is a cloud-based hr & payroll management software, and Stashfin is a digital lending venture that provides quick personal loans. The firm announced that it came across 24 GB compressed files put up for sale online. The organization had said that the files of data contained the full name, address, date of birth, Permanent Account Number (PAN), email, phone, country code, nationality, among other details of the users. However, apart from Cyble's revelation, the companies have not issued any statements regarding the data breach. Since Cyble is a legit security firm, we can say that violations might have occurred, but it needs further validation/investigation to corroborate the claims thoroughly.