Indian online insurer Policybazaar said on Sunday that there had been an unspecified security incident but found that “no significant” customer data had been exposed — or in other words, some had.
Policybazaar, which sells a range of insurance coverages, said in a listing that its IT systems were subject to “illegal and unauthorized access” and is in talks with authorities to seek redress.
The company claims on its website that it serves more than 9 million customers.
PB Fintech, the holding company of Policybazaar, which went public last year and whose shares trade at less than half its debut price, said the review revealed and identified “certain vulnerabilities” in IT systems. patched.
It did not identify what all customer data had been exposed, whether there was a data breach by an attacker or how often the vulnerabilities were exploited. It did not immediately respond to a request for comment.
“The identified vulnerabilities have been fixed and a thorough audit of the systems has been launched. The case is currently under review by the information security team along with external advisors,” the company said said in the depot, which you can read below.