‘Deliberate attack’ deletes shopping app’s AWS and GitHub resources
(2025/06/04)
- Reference: 1749009491
- News link: https://www.theregister.co.uk/2025/06/04/kiranapro_cyberattack_deletes_cloud_resources/
- Source link:
The CEO of Indian grocery ordering app KiranaPro has claimed an attacker deleted its GitHub and AWS resources in a targeted and deliberate attack and vowed to name the perpetrator.
KiranaPro lets users shop at “Kiranas,” the Indian equivalent of convenience stores, which mostly stock basic foodstuffs. Users of the app place an order, which KiranaPro sends to nearby Kiranas who bid to win the sale. The winner arranges delivery of the goods. The elapsed time from ordering to delivery seldom tops 20 minutes.
KiranaPro CEO Deepak Ravindran [1]claims the app “powers the livelihoods of thousands of Kirana store owners” and handles 2,000-plus orders each day.
[2]
Ravindran also claims the app was destroyed by someone who holds a grudge.
[3]
[4]
“Our startup @Kirana_Pro was deliberately hacked—entire GitHub repo & AWS data wiped. Logs suggest malicious insider action,” he [5]wrote on June 3rd.
The attack happened last week, and the app has been inoperable since.
[6]India none-too-subtly reminds Big Tech that local laws prohibit dark patterns
[7]Rideshare companies in India are asking for tips before the trip
[8]India’s chipmaking ambitions hurt by Zoho’s no-go and Adani unease
[9]Asia reaches 50 percent IPv6 capability and leads the world in user numbers
On Wednesday, Ravindran described the incident as “a targeted cyberattack.”
“It wasn’t random. It wasn’t opportunistic. It was deliberate. And it was personal,” he [10]wrote . “Our servers were breached, critical infrastructure was deleted, and sensitive customer data was compromised. The attack was a calculated attempt to undermine our mission and the community we serve.”
[11]
“We are rebuilding our systems with enhanced security measures to prevent future incidents,” he added.
Ravindran later promised he would expose the hacker on Wednesday.
The quotes above come from the CEO’s [12]@deepakravindran account on X, so if you fancy reading his possibly defamatory revelation that may well be the place to find it!
[13]
If the culprit was, as Ravindran alleges, a malicious insider, the incident highlights the difficulty of defending against attackers who enjoy privileged access to systems and infrastructure. It also suggests KiranaPro may not have adopted best practices, such as keeping backups outside the cloud, or using AWS’s settings to require two authorizations before deleting resources. Or perhaps KiranaPro did take such precautions, in which case it’s facing multiple foes. ®
Get our [14]Tech Resources
[1] https://x.com/deepakravindran/status/1929721944234226096
[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0
[3] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[4] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[5] https://x.com/deepakravindran/status/1929721939847008494
[6] https://www.theregister.com/2025/05/29/india_nonetoosubtly_reminds_big_tech/
[7] https://www.theregister.com/2025/05/23/tiup_before_rideshare_uber_controversy/
[8] https://www.theregister.com/2025/05/05/asia_tech_news_in_brief/
[9] https://www.theregister.com/2025/04/23/apnic_half_ipv6_capable/
[10] https://x.com/deepakravindran/status/1930083247221805086
[11] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[12] https://x.com/deepakravindran
[13] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[14] https://whitepapers.theregister.com/
KiranaPro lets users shop at “Kiranas,” the Indian equivalent of convenience stores, which mostly stock basic foodstuffs. Users of the app place an order, which KiranaPro sends to nearby Kiranas who bid to win the sale. The winner arranges delivery of the goods. The elapsed time from ordering to delivery seldom tops 20 minutes.
KiranaPro CEO Deepak Ravindran [1]claims the app “powers the livelihoods of thousands of Kirana store owners” and handles 2,000-plus orders each day.
[2]
Ravindran also claims the app was destroyed by someone who holds a grudge.
[3]
[4]
“Our startup @Kirana_Pro was deliberately hacked—entire GitHub repo & AWS data wiped. Logs suggest malicious insider action,” he [5]wrote on June 3rd.
The attack happened last week, and the app has been inoperable since.
[6]India none-too-subtly reminds Big Tech that local laws prohibit dark patterns
[7]Rideshare companies in India are asking for tips before the trip
[8]India’s chipmaking ambitions hurt by Zoho’s no-go and Adani unease
[9]Asia reaches 50 percent IPv6 capability and leads the world in user numbers
On Wednesday, Ravindran described the incident as “a targeted cyberattack.”
“It wasn’t random. It wasn’t opportunistic. It was deliberate. And it was personal,” he [10]wrote . “Our servers were breached, critical infrastructure was deleted, and sensitive customer data was compromised. The attack was a calculated attempt to undermine our mission and the community we serve.”
[11]
“We are rebuilding our systems with enhanced security measures to prevent future incidents,” he added.
Ravindran later promised he would expose the hacker on Wednesday.
The quotes above come from the CEO’s [12]@deepakravindran account on X, so if you fancy reading his possibly defamatory revelation that may well be the place to find it!
[13]
If the culprit was, as Ravindran alleges, a malicious insider, the incident highlights the difficulty of defending against attackers who enjoy privileged access to systems and infrastructure. It also suggests KiranaPro may not have adopted best practices, such as keeping backups outside the cloud, or using AWS’s settings to require two authorizations before deleting resources. Or perhaps KiranaPro did take such precautions, in which case it’s facing multiple foes. ®
Get our [14]Tech Resources
[1] https://x.com/deepakravindran/status/1929721944234226096
[2] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=2&c=2aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0
[3] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[4] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[5] https://x.com/deepakravindran/status/1929721939847008494
[6] https://www.theregister.com/2025/05/29/india_nonetoosubtly_reminds_big_tech/
[7] https://www.theregister.com/2025/05/23/tiup_before_rideshare_uber_controversy/
[8] https://www.theregister.com/2025/05/05/asia_tech_news_in_brief/
[9] https://www.theregister.com/2025/04/23/apnic_half_ipv6_capable/
[10] https://x.com/deepakravindran/status/1930083247221805086
[11] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=4&c=44aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0
[12] https://x.com/deepakravindran
[13] https://pubads.g.doubleclick.net/gampad/jump?co=1&iu=/6978/reg_security/cybercrime&sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&tile=3&c=33aEAZKTQbt4g4drLco6-Y9QAAAQk&t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0
[14] https://whitepapers.theregister.com/
wolfetone
“We are rebuilding our systems with enhanced security measures to prevent future incidents,” he added.
We have changed our password from Password01, to Password01!
Brewster's Angle Grinder
This reads like a CEO with persecution complex can't quite accept his tech stack was full of holes and skiddies cancelled him for shits and giggles. (If it was pros, they would have encrypted it and demanded a ransom.) "It must be some malign force determined to injure me, not that I was naff, depended on luck, and my winning streak came to an end."
Given the personality on display, I can't rule out a former employee snapping. But I want to see concrete evidence of something more than a scape goat before I believe.
Korev
> KiranaPro lets users shop at “Kiranas,” the Indian equivalent of convenience stores
I'm pretty sure a convenience store is the same thing the world over...
Korev
> The CEO of Indian grocery ordering app KiranaPro has claimed an attacker deleted its GitHub and AWS resources in a targeted and deliberate attack
Was this due to Lakhs security?
Something doesn't add up
the app “powers the livelihoods of thousands of Kirana store owners” and handles 2,000-plus orders each day.
So each store survives on less than one additional order per day? Have a few zeroes disappeared somewhere?