ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

Bookchor Data Breach

bookchor.com
Limited exposure
Verified breach Passwords exposed
Accounts exposed 498,297
Breach date 28 Jan 2021
Added to tracker 03 Jul 2022
Data classes 8

What happened

In January 2021, the Indian book trading website Bookchor suffered a data breach that exposed half a million customer records. The exposed data included email and IP addresses, names, genders, dates of birth, phone numbers and passwords stored as unsalted MD5 hashes. The data was subsequently traded on a popular hacking forum.

Exposed data

Dates of birth Email addresses Genders IP addresses Names Passwords Phone numbers Social media profiles

Recommended actions

  • Change your Bookchor password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing Bookchor — attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP