ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

ParkMobile Data Breach

parkmobile.io
Major exposure
Verified breach Passwords exposed
Accounts exposed 20,949,825
Breach date 21 Mar 2021
Added to tracker 30 Apr 2021
Data classes 5

What happened

In March 2021, the mobile parking app service ParkMobile suffered a data breach which exposed 21 million customers' personal data. The impacted data included email addresses, names, phone numbers, vehicle licence plates and passwords stored as bcrypt hashes. The following month, the data appeared on a public hacking forum where it was extensively redistributed.

Exposed data

Email addresses Licence plates Names Passwords Phone numbers

Recommended actions

  • Change your ParkMobile password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing ParkMobile — attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP