Skip to content
Cyber Breaches
Search
Data breachResolved

Zoomcar data breach (2018)

In July 2018, the Indian self-drive car rental company Zoomcar suffered a data breach which was subsequently sold on a dark web marketplace in 2020. The breach exposed over 3.5M records including names, email and IP addresses, phone numbers and passwords stored as bcrypt hashes.

Victim
Zoomcar
records
3.6M
SectorRetail

Imported from Have I Been Pwned — pending editorial review and translation to French. The summary below is machine-extracted; consult the source for details.

In 2018-07-01, Zoomcar was affected by a data breach. Approximately 3,589,795 accounts were exposed. In July 2018, the Indian self-drive car rental company Zoomcar suffered a data breach which was subsequently sold on a dark web marketplace in 2020. The breach exposed over 3.5M records including names, email and IP addresses, phone numbers and passwords stored as bcrypt hashes.

Sources

  1. haveibeenpwned.comhttps://haveibeenpwned.com/PwnedWebsites#Zoomcar
  2. zoomcar.comhttps://zoomcar.com

Related incidents

Data breachResolved

IIMJobs data breach (2018)

In December 2018, the Indian job portal IIMJobs suffered a data breach that exposed 4.1 million unique email addresses. The data also included names, phone numbers, geographic locations, dates of birth, job titles, job applications and cover letters plus passwords stored as unsalted MD5 hashes.

Victim
IIMJobs
Records
4.2M
Data breachResolved

BlankMediaGames data breach (2018)

In December 2018, the Town of Salem website produced by BlankMediaGames suffered a data breach. Reported to HIBP by DeHashed, the data contained 7.6M unique user email addresses alongside usernames, IP addresses, purchase histories and passwords stored as phpass hashes.

Victim
BlankMediaGames
Records
7.6M
Data breachResolved

OGUsers (2019 breach) data breach (2018)

In May 2019, the account hijacking and SIM swapping forum OGusers suffered a data breach. The breach exposed a database backup from December 2018 which was published on a rival hacking forum. There were 161k unique email addresses spread across 113k forum users and other tables in the database.

Victim
OGUsers (2019 breach)
Records
161.1K
Data breachResolved

Wanelo data breach (2018)

In approximately December 2018, the digital mall Wanelo suffered a data breach. The data was later placed up for sale on a dark web marketplace along with a collection of other data breaches in April 2019.

Victim
Wanelo
Records
23.2M