ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

RentoMojo Data Breach

rentomojo.com
Significant exposure
Verified breach Passwords exposed
Accounts exposed 2,185,697
Breach date 15 Apr 2023
Added to tracker 10 May 2023
Data classes 10

What happened

In April 2023, the Indian rental service RentoMojo suffered a data breach. The breach exposed over 2M unique email addresses along with names, phone, passport and Aadhaar numbers, genders, dates of birth, purchases and bcrypt password hashes.

Exposed data

Dates of birth Email addresses Genders Government issued IDs Names Passport numbers Passwords Phone numbers Purchases Social media profiles

Recommended actions

  • Change your RentoMojo password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing RentoMojo — attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Exposed identity data raises identity-theft risk — consider credit monitoring or a credit freeze.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP