Amul India Data Leak: How India’s Dairy Leader Left User Data Vulnerable
1 min read
Summary
Recent reports have highlighted a concerning data leak from Indian dairy producer Amul, with over 10,000 customer records left exposed on the Wayback Machine.
As there is no bounty programme or disclosure policy for Amul, the researcher who discovered the issue alerted the company to the vulnerability but received no response.
After alerting the appropriate authorities to the issue, the vulnerability was fixed partially, leaving some data still exposed.
The breach exposed customer names, addresses,gmail addresses, phone numbers and order histories, highlighting a severe failure of data protection on the part of the company.
This is all the more concerning given that Amul is majority-owned by a cooperative of dairy farmers and its products are used by virtually all of India. Gowda, the researcher who discovered the issue, stresses that no active testing was carried out, merely scanning and searching public information.