Indian ICICI Bank app leaks card data, impacting 17k customers

ICICI Bank has encountered a significant data leak involving the credit card information of approximately 17,000 of its new customers. ICICI Bank is an Indian multinational banking and financial services company, is headquartered in Mumbai.

This leak was reported by several customers on social media who discovered that the bank's iMobile app inadvertently exposed credit card details, including full card numbers and CVVs (Card Verification Values). Users on the finance-related forum Technofino also reported seeing similar sensitive information related to unknown customers on their iMobile Pay app.

A spokesperson for ICICI Bank acknowledged that these new credit cards were mistakenly mapped to incorrect users via the bank's digital channels. While there have been no reported instances of misuse stemming from this error, the bank has proactively blocked the affected cards and is in the process of issuing new ones to the impacted customers. The bank also assured that it would compensate any customer who experiences financial loss due to this issue.

The iMobile Pay app, operational since 2008, serves over 28 million users.