When not if.

“When.”

If you’re an Indian, your identity and personal information are most probably going to be hacked, leaked or breached in the coming years. It’s just a question of when it happens, not if.

Perhaps some of your data has already leaked and you just don’t know it yet. Maybe it’s among the 10 million vehicle owners or 34 million subsidised food recipients in Kerala? Or among the 3.2 million debit card holders? Or the 100-120 million Reliance Jio mobile users? Perhaps the 17 million Zomato users or the 2.2 million McDonald’s ones? The 130 million Aadhaar users whose data was accidentally leaked?

Identity thieves took out a big loan in the name of the CEO of $10.5 billion Securitas, one of the world’s largest security companies, and then declared him bankrupt. Let me repeat that—the CEO of a security company that employs nearly 3 lakh people around the world had to step down from company boards because identity thieves declared him bankrupt.

So, remember, it’s when, not if. The sooner you accept that reality, the better.

The Hockey Stick Hypothesis

The average Indian has nearly 80 apps on her phone. The majority are cloud-based online services—cheap to build but tough to secure. Ninety-four percent of all cloud applications are not enterprise-ready in terms of security, said a report last year by netskope.

You may wonder why breaches keep happening irrespective of assurances of “Your data is safe” by the organisations to whom you entrust your data.

A simple explanation is that most organisations have neither the means nor motivation to secure your data. Online startups are in the early stages of their lives focused more on surviving, rather than spending their limited time and money on security best practices. Unless of course, they are in banking or fintech, where security standards like PCI DSS are mandatory for starting operations.

Once businesses get past survival, their focus turns to rapid growth and scaling. Again, security is an afterthought. The famous “hockey stick curve” is what most businesses go all out for. Caution is thrown to the winds as growth is chased at all costs. Issues start popping up. And these issues start getting noticed and reported during the consolidation phase that follows the growth phase when the businesses start looking at unit economics. Hence most breaches occur (or to be more accurate, are noticed or widely reported) during the consolidation phase that follows the growth phase businesses.

Explore more infographics like this in The Ken -
Visual Stories

And if that wasn’t enough, the use of “super keys” like mobile number and universal ID Aadhaar makes it easier for hackers to join together data from various breaches to construct a fine-grained view of the digital footprints of victims.

AUTHOR

Anand Venkatanarayanan

Previously a Senior Engineer with NetApp, Anand describes his current affiliations as "Chief Financial Officer at HasGeek during the day, Security Researcher during evenings and Privacy Advocacy after dark. He was mostly into Data Security and recently has taken an interest in application and end point security. He is a known privacy buff and mistakenly believes that everyone should care about their privacy.

View Full Profile

Subscribe to read this story

The Ken is the only business subscription you need. Questions?

 

Premium

  • 5 original and reported longform business stories every week
  • Access to ONLY India edition
  • Close to 250 exclusive stories every year
  • Full access to over 5 years of paywalled stories
  • Pick up to 5 premium subscriber newsletters
  • 4 original and reported longform business stories each week
  • Access to ONLY Southeast Asia edition
  • Close to 200 exclusive stories every year
  • Full access to all paywalled stories since March 2020
  • Pick up to 5 premium subscriber newsletters

Rs. 2,750 /year

$ 120 /year

India Edition
Subscribe Subscribe
Most Asked For

Borderless

  • 8 original and reported longform business stories each week
  • Access to both India and Southeast Asia editions
  • Close to 400 exclusive stories every year
  • Full access to over 5 years of paywalled stories across India and Southeast Asia
  • Unlimited access to all premium subscriber newsletters
  • Visual Stories

Rs. 4,200 /year

Subscribe
 

Echelon

  • 8 original and reported longform business stories each week
  • Access to both India and Southeast Asia editions
  • Close to 400 exclusive stories every year
  • Full access to over 5 years of paywalled stories across India and Southeast Asia
  • Unlimited access to all premium subscriber newsletters
  • Visual Stories
  • Bonus annual gift subscription
  • Priority access to all new products and features

Rs. 8,474 /year

Subscribe
Or

Questions?

What kind of subscription plans do you offer?

We have three types of subscriptions
- Premium which gives you access to either the India or the Southeast Asia edition.
- Borderless which gives you complete access to The Ken across both editions
- Echelon which gives you complete access to The Ken across both editions along with a bonus gift subscription

What do I get if I subscribe?

The Premium edition gives you access to stories in that edition along with any five subscriber-only newsletters of your choice.

The Borderless and Echelon subscription gives you complete access to The Ken across editions and unlimited access to as many newsletters as you like.

What topics do you usually write about?

We publish sharp, original and reported stories on technology, business and healthcare. Our stories are forward-looking, analytical and directional — supported by data, visualisations and infographics. We use language and narrative that is accessible to even lay readers. And we optimise for quality over quantity, every single time.

Our specialised subscriber-only newsletters are written by our expert, award-winning journalists and cover a range of topics across finance, retail, clean energy, cryptocurrency, ed-tech and many more.

How many newsletters do you have?

We are constantly adding specialised subscriber-only newsletters all the time. All of these are written by our team of award-winning journalists on a specialised topic.

You can see the list of newsletters that we publish over here.

Does a Premium subscription to your Indian edition get me access to the Southeast Asia edition? Or vice-versa?

Afraid not. Each edition is separate with its own subscription plan. The India edition publishes stories focused on India. The Southeast Asia edition is focused on Southeast Asia. We may occasionally cross-publish stories from one edition to the other.

We recommend the Borderless or the Echelon Plan which will give you access to stories across both editions.

Do you have a mobile app?

Yes! We have a top-rated mobile app on both iOS and Android which allows you to read on-the-go and has some amazing features like the ability to bookmark stories, save on your device, dark mode, and much more. It’s really the best way to read The Ken.

Is there a free trial?

You can sign up for a free account to experience The Ken and understand our products better. We’ll send you some free stories and newsletters occasionally, and you can access our archive of previously published free stories. You can stay on the free account as long as you’d like.

The vast majority of our stories, articles and newsletters can be accessed only by a paid subscription.

Do you offer any discounts?

Sorry, no. Our journalism is funded completely by our subscribers. We believe that quality journalism comes at a price, and readers trust and pay us so that we can remain independent.

Do you offer refunds?

No. We allow you to sample our journalism for free before signing up, and after you do, we stand by its quality. But we do not offer refunds.

I am facing some trouble purchasing a subscription. What can I do?

Just write to us at [email protected] with details. We’ll help you out.

I have a few more questions. How can I reach out to you?

Sure. Just email us at [email protected] or follow us on Twitter.