Skip to content

Incidents in country:

India

21 incidents catalogued

Data breachResolved

BSNL telecom data breach

A threat actor advertised roughly 278 GB of data stolen from India's state-owned telecom BSNL โ€” including IMSI numbers, SIM details, home location register data, and security keys โ€” exposing millions of subscribers to SIM-cloning and fraud, in the carrier's second breach in six months.

Victim
Bharat Sanchar Nigam Limited (BSNL)
Data breachResolved

RailYatri data breach (2022)

In December 2022, Indiaโ€™s government-approved online travel agency RailYatri suffered a data breach. The incident impacted over 31M customers and exposed 23M unique email addresses. Also impacted were names, genders, phone numbers and tickets purchased, including travel information and fares.

Victim
RailYatri
Records
23.2M
RansomwareContained

AIIMS Delhi ransomware

Ransomware encrypted the All India Institute of Medical Sciences in New Delhi โ€” India's most prestigious public hospital โ€” taking patient registration and clinical records offline for two weeks during peak winter patient load.

Victim
All India Institute of Medical Sciences (AIIMS) New Delhi
Loss
$15.0M
Data breachdisputed

MobiKwik data breach

An 8.2TB trove tied to Indian fintech MobiKwik โ€” reportedly covering up to 99 million users with KYC documents, Aadhaar and card details โ€” was advertised for sale on a dark-web forum, in a breach the company repeatedly denied.

Victim
MobiKwik
Records
99.0M
Data breachResolved

Domino's India data breach (2021)

In April 2021, 13TB of compromised Domino's India appeared for sale on a hacking forum after which the company acknowledged a major data breach they dated back to March. The compromised data included 22.5 million unique email addresses, names, phone numbers, order histories and physical addresses.

Victim
Domino's India
Records
22.5M
Data breachResolved

bigbasket data breach (2020)

In October 2020, the Indian grocery platform bigbasket suffered a data breach that exposed over 20 million customer records. The data was originally sold before being leaked publicly in April the following year and included email, IP and physical addresses, names, phones numbers, dates of birthโ€ฆ

Victim
bigbasket
Records
24.5M
Data breachResolved

Dunzo data breach (2020)

In approximately June 2019, the Indian delivery service Dunzo suffered a data breach. Exposing 3.5 million unique email addresses, the Dunzo breach also included names, phone numbers and IP addresses which were all broadly distributed online via a hacking forum.

Victim
Dunzo
Records
3.5M
Data breachResolved

LBB data breach (2019)

In August 2022, customer data of the Indian shopping site "LBB" (Little Black Book) was posted to a popular hacking forum. The data contained over 3M records with 39k unique email addresses alongside IP and physical addresses, names and device information with the most recent data dating back toโ€ฆ

Victim
LBB
Records
39.3K
Data breachUnknown

Aadhaar database exposure

Tribune India journalists demonstrated that paid intermediaries could provide full Aadhaar records โ€” including biometric-linked identity data on roughly 1.1 billion Indian residents โ€” for 500 rupees per record.

Victim
Unique Identification Authority of India (UIDAI) / Aadhaar
Records
1.10B
Data breachResolved

Elanic data breach (2018)

In January 2020, the Indian fashion marketplace Elanic had 2.8M records with 2.3M unique email addresses posted publicly to a popular hacking forum. Elanic confirmed that they had "verified the data and it was pulled from one of our test servers where this data was exposed publicly" and that theโ€ฆ

Victim
Elanic
Records
2.3M
Data breachResolved

Zomato data breach (2017)

In May 2017, the restaurant guide website Zomato was hacked resulting in the exposure of almost 17 million accounts. The data was consequently redistributed online and contains email addresses, usernames and salted MD5 hashes of passwords (the password hash was not present on all accounts).

Victim
Zomato
Records
16.5M
Data breachResolved

Digimon data breach (2016)

In September 2016, over 16GB of logs from a service indicated to be digimon.co.in were obtained, most likely from an unprotected Mongo DB instance. The service ceased running shortly afterwards and no information remains about the precise nature of it.

Victim
Digimon
Records
7.7M