Groupon reveals security breach in India

Jun 29, 2011 by Ammu Kannampilly
The logo of online deals giant Groupon is seen at the company's international headquarters in Chicago, Illinois. The Indian subsidiary of the web firm has accidentally published email addresses and passwords of its 300,000-strong subscriber database, reports and the company said.

The Indian subsidiary of online deals giant Groupon has accidentally published email addresses and passwords from its subscriber database, the company and reports said Wednesday.

Groupon said in a statement sent to AFP that it "was alerted to a security issue" affecting its Sosasta.com subsidiary last Friday and that it "corrected the problem immediately."

Sosasta, an online discount portal acquired in January 2011, informed its subscribers Tuesday and posted a message on its Facebook page asking users to "change your Sosasta password immediately."

Daniel Grzelak, founder of the Internet security website shouldichangemypassword.com, found the security breach while running a Google search for publicly available databases of email addresses and passwords.

"A few hours and tweaks later, this database came up," he told the Internet security site risky.biz, which said SoSasta's database contained information on 300,000 people.

"I started scrolling, and scrolling, and I couldn't get to the bottom of the file. Then I realised how big it actually was."

Grzelak's website holds a database of 1.3 million compromised email addresses, allowing users to check if their own email address is among those deemed unsafe.

"There are thousands of these databases indexed by Google," he told risky.biz. "This just happened to be by far the biggest I found."

Groupon said it would review Sosasta's security procedures thoroughly and put in place "measures designed to prevent this kind of issue from recurring."

"Groupon takes security and privacy very seriously. Our users' trust is of paramount importance to us and we deeply regret this incident," the firm said. "This issue does not affect data from any other country or region."

Groupon, based in Chicago, announced plans to go public earlier this month, after turning down a $6 billion takeover offer from Google last year. It currently has 83.1 million subscribers and operates in 43 countries.

The company operates on the principle of collective buying, negotiating with businesses to offer discounted purchases which come into effect when a minimum number of subscribers agree to pay for the same deal.

Explore further: Google to help boost Greece's tourism industry

add to favorites email to friend print save as pdf

Related Stories

Groupon bargain service taps ex-Google exec

Apr 22, 2011

Online bargain hunter Groupon announced the appointment of former Google executive Margo Georgiadis on Thursday, saying she would oversee global sales, marketing and operations.

Groupon raises $950 mln in new funding

Jan 10, 2011

Internet bargain coupon phenomenon Groupon said Monday it had raised $950 million in the past month to invest in technology, fund its global expansion and compensate company employees and early investors.

Google close to buying Groupon: reports

Nov 30, 2010

Internet search giant Google is close to a deal to buy online discount shopping site Groupon for as much as six billion dollars, The New York Times and a leading technology blog reported.

Groupon files for IPO, seeks to raise $750 million

Jun 02, 2011

Rapidly growing online coupon seller Groupon Inc. is offering its most tantalizing deal yet - an initial public offering of stock likely to intensify a debate about whether an investment bubble is forming ...

Recommended for you

Fitbit to Schumer: We don't sell personal data

10 hours ago

The maker of a popular line of wearable fitness-tracking devices says it has never sold personal data to advertisers, contrary to concerns raised by U.S. Sen. Charles Schumer.

Should you be worried about paid editors on Wikipedia?

14 hours ago

Whether you trust it or ignore it, Wikipedia is one of the most popular websites in the world and accessed by millions of people every day. So would you trust it any more (or even less) if you knew people ...

Philippines makes arrests in online extortion ring

15 hours ago

Philippine police have arrested eight suspected members of an online syndicate accused of blackmailing more than 1,000 Hong Kong and Singapore residents after luring them into exposing themselves in front of webcam, an official ...

Google to help boost Greece's tourism industry

Aug 21, 2014

Internet giant Google will offer management courses to 3,000 tourism businesses on the island of Crete as part of an initiative to promote the sector in Greece, industry union Sete said on Thursday.

Music site SoundCloud to start paying artists

Aug 21, 2014

SoundCloud said Thursday that it will start paying artists and record companies whose music is played on the popular streaming site, a move that will bring it in line with competitors such as YouTube and Spotify.

User comments : 0