ShellCodeX Breach Report
IndiaMART Data Breach
indiamart.com
Verified breach
Accounts exposed
20,154,583
Breach date
23 May 2021
Added to tracker
27 Aug 2021
Data classes
4
What happened
In August 2021, 38 million records from Indian e-commerce company IndiaMART were found being traded on a popular hacking forum. Dated several months earlier, the data included over 20 million unique email addresses alongside names, phone numbers and physical addresses. It's unclear whether IndiaMART intentionally exposed the data attributes as part of the intended design of the platform or whether the data was obtained by exploiting a vulnerability in the service.
Exposed data
Email addresses
Names
Phone numbers
Physical addresses
Recommended actions
- Watch for targeted phishing emails referencing IndiaMART โ attackers weaponise breach data quickly.
- Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
- Exposed identity data raises identity-theft risk โ consider credit monitoring or a credit freeze.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP