Byju’s Fixes Server Misconfiguration Exposing Sensitive Student Data

  • Indian edtech giant Byju’s has resolved a server-side misconfiguration that leaked students’ personal and loan data.
  • The security lapse, involving an improperly configured Apache Kafka server, made 1-2 million records accessible, discovered by security researcher Bob Diachenko.
  • Despite fixing the issue, Byju’s did not disclose the exact number of affected students or if they were notified of the data exposure.
Join 2 million subscribers

A curated newsletter that summarizes the important news at the intersection of Global tech, India Tech and AI.

Delivered 8 AM. Daily.
nextbigwhat We would like to show you notifications for the latest news and updates.
Allow Notifications