Zomato release a security note and they confirmed  that they are being hacked and stolen 17 million user records .

The reason you’re reading this blog post is because of a recent discovery by our security team – about 17 million user records from our database were stolen. The stolen information has user email addresses and hashed passwords. Zomato Blog

However they said Customers credit card information on Zomato is fully secured so there’s nothing to worry about it.

Since last 3 years, Dark Web Marketplaces have been popular for drugs, weapons, databases, fake documents, kills etc. In the Dark Web, anyone can access any illegal stuff at anytime. In The Dark Web marketplace selling the 17 million Hacked Zomatao emails and password hashes for USD 1,001.43 (BTC 0.5587).

Here’s a screenshot of the sample data publicly shared  “nclay” on the Dark Web.

Zomato says – 

Over the next couple of days and weeks, we’ll be actively working to plug any more security gaps that we find in our systems.

  • We’ll be further enhancing security measures for all user information stored within our database
  • A layer of authorization will be added for internal teams having access to this data to avoid the possibility of any human breach.

We regret any disruption this may cause and appreciate your immediate attention to this information. If you have queries/concerns, please do not hesitate to contact our security team by sending an email directly to [email protected] and we’ll reach out to you right away.