Skip to content
Cyber Breaches
Search
Data breachResolved

IndiaMART data breach (2021)

In August 2021, 38 million records from Indian e-commerce company IndiaMART were found being traded on a popular hacking forum. Dated several months earlier, the data included over 20 million unique email addresses alongside names, phone numbers and physical addresses.

Victim
IndiaMART
records
20.2M
SectorRetail

Imported from Have I Been Pwned — pending editorial review and translation to French. The summary below is machine-extracted; consult the source for details.

In 2021-05-23, IndiaMART was affected by a data breach. Approximately 20,154,583 accounts were exposed. In August 2021, 38 million records from Indian e-commerce company IndiaMART were found being traded on a popular hacking forum. Dated several months earlier, the data included over 20 million unique email addresses alongside names, phone numbers and physical addresses.

Sources

  1. haveibeenpwned.comhttps://haveibeenpwned.com/PwnedWebsites#IndiaMART
  2. indiamart.comhttps://indiamart.com

Related incidents

Data breachResolved

Aditya Birla Fashion and Retail data breach (2021)

In December 2021, Indian retailer Aditya Birla Fashion and Retail Ltd was breached and ransomed. The ransom demand was allegedly rejected and data containing 5.4M unique email addresses was subsequently dumped publicly on a popular hacking forum the next month.

Victim
Aditya Birla Fashion and Retail
Records
5.5M
Data breachResolved

Fantasy Football Hub data breach (2021)

In October 2021, the fantasy premier league (soccer) website Fantasy Football Hub suffered a data breach that exposed 66 thousand unique email addresses. The data included names, usernames, IP addresses, transactions and passwords stored as WordPress MD5 hashes.

Victim
Fantasy Football Hub
Records
66.5K
Data breachResolved

Fitmart data breach (2021)

In October 2021, data from the German fitness supplies store Fitmart was obtained and later redistributed online. The data included 214k unique email addresses accompanied by plain text passwords, allegedly "dehashed" from the original stored version.

Victim
Fitmart
Records
214.5K
Data breachResolved

Epik data breach (2021)

In September 2021, the domain registrar and web host Epik suffered a significant data breach, allegedly in retaliation for hosting alt-right websites. The breach exposed a huge volume of data not just of Epik customers, but also scraped WHOIS records belonging to individuals and organisations who…

Victim
Epik
Records
15.0M