New Product Security Index Reveals India's Most and Least Secure Startups

Advertisement
By Sriram Sharma | Updated: 2 February 2016 13:10 IST

Bengaluru-based security startup Fallible has launched its Product Security Index, which diagnoses and grades Indian startups by testing them on around 50 security-related parameters for vulnerabilities and bugs.

According to Fallible's Product Security Index, the least secure startups include Ticketnew, Healthcart, Zopnow, Bharat Matrimony, and ShopClues. The most secure products according to the company's rankings are FreeCharge, Urban Ladder, Groupon India, NewsHunt, and Ola. Startups with a below 50 percent rating on the index include unicorns like Zomato, ShopClues, and Quikr.

Advertisement

Abhishek Anand, Co-Founder at Fallible, told Gadgets 360 that the startup has automated around 50 tests, with parameters centred around authentication, HTTP headers, SSL configuration, man in the middle attacks, and payments. "The most common vulnerabilities are around payments, where a bug allows you to place orders for the same amount multiple number of times and pay just once. There are user data leaks, site configuration issues which can be used to bring down the site," He said.

Fallible started its operations three months back, said Co-Founder Manish Kumar, and took the blogging route to raise awareness of the vulnerabilities they found, and make startups more keen to fix them swiftly. The rankings are opaque as they don't list the insecurities publicly. Kumar said this was intentional, as they don't want to disclose security holes to the public, as they would get sued for doing so. "But we know the bugs, and we try to contact them for the fixes. We put out a score so that companies realise there is a problem. Once they reach out to us, we can tell them what the bugs are," he explained.

Advertisement

The founders wrote a blog in October 2015, detailing a list of vulnerabilities in leading Indian startups. "We haven't named the companies, but there's a list of open bugs there. In October, we contacted some 18 companies, out of which 10-12 have fixed their bugs. The rest of them are still open. Around three to four companies did not bother to even acknowledge it," Anand said.

Companies in India are not very keen on giving out bounties like they do in the US, Anand said. Fallible works with startups to audit and fix their security, and then opens it up for the hacker community to point out any potential bugs or vulnerabilities. Fallible's customers include Grofers and Healthkart, the startup also received a bounty of Rs. 65,000 from Ola for pointing out a bug. The team plans to launch a crowd-sourced bug bounty model for hackers on its platform in the future.

Advertisement

Kumar said that users should be careful with startups scoring below 50 on the list. "Whenever you sign up with these them, you give your personal information such as your email, address, personal location to them. If they are not securely kept in the database, they can lead to various kind of criminal things," he said.

 

Get your daily dose of tech news, reviews, and insights, in under 80 characters on Gadgets 360 Turbo. Connect with fellow tech lovers on our Forum. Follow us on X, Facebook, WhatsApp, Threads and Google News for instant updates. Catch all the action on our YouTube channel.

Advertisement
Popular Mobile Brands
  1. Amazon Prime Day Sale: Early Deals on Smartphones From Top Brands Revealed
  2. Flipkart GOAT Sale: Top Early Deals on Smartphones, Tablets and More
  3. Here's Our First Look of the Nothing Phone 4b 'RCB Edition' Variant
  4. OTT Releases This Week: Elle, Super Subbu, Enola Holmes 3, and More
  5. iPhone 18 Pro Max Might Arrive With Apple's Biggest Battery Yet
  6. Huion's 2026 India Lineup Defines Next-Gen Creativity
  7. Amazon Prime Day 2026: Early Deals on Galaxy S25 Ultra, OnePlus 13 and More
  8. CMF's Himanshu Tandon Departs Firm After a 10-Month Stint
  9. Moto G77 Power Will Launch in India on This Date
  10. Apple May Equip iPhone 18 Pro With Different Modems, Based on Regions
  1. Bitcoin Climbs Above $61,600 as Weak US Jobs Data Boosts Crypto Investor Sentiment
  2. iPhone 18 Pro Max Might Arrive With Apple's Biggest Smartphone Battery to Date, Latest Leak Suggests
  3. Vivo X500 Camera Specifications Leaked; 64-Megapixel Periscope Telephoto Camera Tipped
  4. Lenovo Legion Y700 AI Tablet Confirmed to Launch in August; Company Teases Gaming Tablet's Design
  5. iPhone 18 Pro to Feature Apple's C2 Modem Globally, Qualcomm Chip in the US: Report
  6. Xbox Will Reportedly Allow Users to Digitise Physical Games, Ship Project Helix Without Disc Drive
  7. Fire-Boltt's First Smartphone May Be Called Boltt Evo 4G, Tipster Claims; Key Specifications Leak
  8. iQOO Z11i Launched With 6,500mAh Battery, Snapdragon 4 Gen 2 Chip: Price, Specifications
  9. Huawei Band 11 Series Launched in India With 1.62-Inch Display, Over 100 Workout Modes: Price, Features
  10. Samsung Galaxy A18 Models Said to Drop Exynos Chip in Favour of MediaTek, Snapdragon
Download Our Apps
Available in Hindi
© Copyright Red Pixels Ventures Limited 2026. All rights reserved.