Automobile-sharing big Zoomcar Holdings, Inc. has disclosed a major cybersecurity incident that compromised delicate private info of roughly 8.4 million customers.
The breach, found on June 9, 2025, represents one of many largest knowledge exposures within the mobility sector, highlighting ongoing vulnerabilities in cloud infrastructure safety.
In accordance with an SEC Type 8-Ok submitting, menace actors gained unauthorized entry to the corporate’s info methods, exposing names, cellphone numbers, automobile registration particulars, private addresses, and e mail addresses of affected customers.
Zoomcar Hacked
The cybersecurity incident got here to mild when Zoomcar workers acquired exterior communications from menace actors claiming unauthorized entry to firm databases.
The assault seems to have focused a particular dataset containing personally identifiable info (PII) fairly than the corporate’s whole infrastructure.
In accordance with the SEC disclosure, the compromised knowledge repository included vital consumer info similar to full names, cell phone numbers, automobile registration numbers, residential addresses, and e mail addresses related to consumer accounts.
Cybersecurity consultants notice that this sort of knowledge publicity follows typical patterns of Superior Persistent Menace (APT) assaults, the place malicious actors conduct reconnaissance earlier than extracting worthwhile datasets.
The breach methodology suggests potential vulnerabilities within the firm’s entry management mechanisms and community segmentation protocols.
Nevertheless, Zoomcar’s preliminary investigation signifies that monetary info, together with cost card knowledge and checking account particulars, remained safe.
Moreover, plaintext passwords and different delicate authentication credentials weren’t compromised, suggesting the corporate applied correct password hashing algorithms and safe credential storage practices.
The size of the breach impacts roughly 8.4 million customers throughout Zoomcar’s operational markets, making it a major incident requiring obligatory disclosure beneath varied knowledge safety rules.
The uncovered private info might doubtlessly be exploited for id theft, social engineering assaults, or focused phishing campaigns in opposition to affected customers.
Upon discovering the safety incident, Zoomcar instantly activated its incident response plan, following established cybersecurity frameworks such because the NIST Cybersecurity Framework protocols.
The corporate’s safety group applied containment measures to forestall additional unauthorized entry and commenced forensic evaluation to find out the assault vector and scope of compromise.
These speedy response actions included isolating affected methods, implementing extra community monitoring instruments, and conducting complete safety audits throughout their cloud infrastructure.
The corporate has engaged third-party cybersecurity specialists to help with the investigation and implement enhanced safety controls.
Automate menace response with ANY.RUN’s TI Feeds—Enrich alerts and block malicious IPs throughout all endpoints -> Request full entry
