Researchers from UpGuard uncovered a major data breach involving 273,000 sensitive bank transfer documents from Indian customers, stored on an unsecured Amazon cloud server. The exposed files included personal information such as account numbers and transaction details, linked to at least 38 banks and financial institutions. The data was primarily related to the National Automated Clearing House (NACH), which facilitates high-volume transactions like salaries and loan repayments. Despite notifying Aye Finance and the National Payments Corporation of India (NPCI), the data remained publicly accessible for weeks, raising questions about accountability and security practices. UpGuard's findings indicate that over half of the sampled documents were associated with Aye Finance, which recently filed for a $171 million IPO. The NPCI denied any responsibility for the breach, stating that the data did not originate from its systems.