wordpress blog stats
Connect with us

Hi, what are you looking for?

Dunzo breach affected over 3.4 million accounts; location data, last login details compromised as well

The security breach that delivery service Dunzo disclosed earlier this month affected at least 3,465,259 accounts, data provided to security researcher Troy Hunt by Dehashed shows. In an update to Dunzo’s blog post on the breach, the company’s CTO Mukund Jha said that users’ last known location was also compromised. The number of accounts affected is roughly seven times higher than the number of monthly transacting users Dunzo had last October. While disclosing the breach earlier, the company had said that only emails and phone numbers of users were compromised, and hadn’t revealed the number of affected users.

It’s unclear how many Dunzo users were notified of the breach before its contents became public, and why the company chose to wait until the breach data was made public before it informed users about the extent of the information that was compromised, and how many users were affected. We have reached out to the company for comment.

“[The breach] included information, like last known location, phone type, last login dates,” Jha said in an update posted on Wednesday afternoon. Since the breach was announced earlier this month, at a time when much of the country remains under lockdown, it is likely that the breach has exposed many users’ home addresses. While Jha doesn’t mention it in his post, Hunt’s entry notes that users’ IP addresses were also exposed in the breach.

“Our teams are additionally working with two external leading cybersecurity firms to further strengthen all our security practices. This will help ensure that in the future, there is no threat of any unauthorized access to our data,” he added.

Also read

You May Also Like


Hyperlocal e-commerce company Dunzo has raised $40 million from new and existing investors including Google, Lightbox, Evolvence, Hana Financial Investment, LGT Lightstone Aspada, and...


As businesses and individuals moved online, cyber criminals and fraudsters were able to hone in their skills and target a wider range of people...


Sensitive card data belonging millions of Indians has been compromised and leaked on the dark web due to a security comprise at a server...


The Payment Card Industry Data Security Standard (PCI-DSS), the international body for card security, is working on updating security standards for card and mobile...

MediaNama is the premier source of information and analysis on Technology Policy in India. More about MediaNama, and contact information, here.

© 2008-2018 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ

Subscribe to Daily Newsletter

    © 2008-2018 Mixed Bag Media Pvt. Ltd. Developed By PixelVJ