bigbasket

In October 2020, BigBasket, a leading Indian online grocery platform, experienced a data breach affecting approximately 20 million users. The compromised data included customers' names, email addresses, hashed passwords, phone numbers, physical addresses, dates of birth, and IP addresses. The breach was first detected by cybersecurity firm Cyble, which reported that a 15GB SQL database containing BigBasket's user information was available for sale on a darknet marketplace for about $40,000. In April 2021, the hacker known as "ShinyHunters" leaked the database on a popular hacking forum, making it freely available. BigBasket acknowledged the breach and filed a complaint with the Cyber Crime Cell in Bengaluru, stating that it does not store financial data, including credit card numbers, and assured customers that their financial information was secure.

Data Included in the Breach