Posts
RTI Desk - RTI-015
Policy Paper on Retail Payments Authorisation
Incident Reports
Incident Reports
As part of monitoring the payments ecosystem, we help in reporting privacy, security issues and help entities fix them. While we prefer responsible disclosure, we might disclose critical issues publicly as well. If you find something wrong / concerning, please let us know through contact and we will assist you in reporting.
S.No | Entity | Type of Report | Outcome | Comments |
---|---|---|---|---|
1 | Aditya Birla Payments Bank | Data Leak - Report | Fixed | Directory browsing enabled on webserver leaking Aadhaar / transaction data |
2 | UltraCash | Malware Detection - Report | Fixed | Found SMS Malware in multiple versions of app |
3 | PayUMoney | Data Leak - Report | Fixed | Unauthenticated users can access partial de-tokenized card information of users |
Committee on Deepening Digital Payments