Croma and Tata Sky had claimed to fix vulnerabilities in their websites which could have exposed sensitive information— names, addresses, phone numbers and purchase history —to cyber criminals even without hacking. The vulnerabilities were discovered by Rahil Bhansali and Ankit Pandey. Bhansali gave the detailed of the vulnerabilities, which was due to some problems with the APIs in both the website, in a blog post.