Published April 8, 2021, 2:29 PM
It has been more than a month ago when the alleged data breach at Cashalo, operated by Oriente Express Techsystem Corporation, surfaced online. It was Valentine’s Day this year when several posts were made in forum websites on the “dark web” selling the personal information of some 3.3 million Cashalo users. Personal information such as usernames, passwords, email addresses, phone numbers, and even device identifications are being sold online at a bargain price. The same data resurfaced in the “dark web” this week.
This was posted April 4, 2021. Karun Arya, vice president for Corporate Affairs of Oriente, parent firm of Cashalo, said that “As before, the database in question was taken offline in Feb itself. All Cashalo user accounts and passwords are secure and cannot be accessed by anyone other than the account holder. We also continue to work closely with NPC and global cybersecurity experts to review and strengthen our cybersecurity posture. We should have a formal update to share in the coming weeks once the full investigations are complete.”