Zoomcar Hacked – 8.4 Million Users’ Sensitive Details Exposed

Car-sharing giant Zoomcar Holdings, Inc. has disclosed a significant cybersecurity incident that compromised sensitive personal information of approximately 8.4 million users. 

The breach, discovered on June 9, 2025, represents one of the largest data exposures in the mobility sector, highlighting ongoing vulnerabilities in cloud infrastructure security. 

According to an SEC Form 8-K filing, threat actors gained unauthorized access to the company’s information systems, exposing names, phone numbers, vehicle registration details, personal addresses, and email addresses of affected users.

Zoomcar Hacked

The cybersecurity incident came to light when Zoomcar employees received external communications from threat actors claiming unauthorized access to company databases. 

The attack appears to have targeted a specific dataset containing personally identifiable information (PII) rather than the company’s entire infrastructure. 

According to the SEC disclosure, the compromised data repository included critical user information such as full names, mobile phone numbers, vehicle registration numbers, residential addresses, and email addresses associated with user accounts.

Cybersecurity experts note that this type of data exposure follows typical patterns of Advanced Persistent Threat (APT) attacks, where malicious actors conduct reconnaissance before extracting valuable datasets. 

The breach methodology suggests potential vulnerabilities in the company’s access control mechanisms and network segmentation protocols. 

However, Zoomcar’s preliminary investigation indicates that financial information, including payment card data and bank account details, remained secure. 

Additionally, plaintext passwords and other sensitive authentication credentials were not compromised, suggesting the company implemented proper password hashing algorithms and secure credential storage practices.

The scale of the breach affects approximately 8.4 million users across Zoomcar’s operational markets, making it a significant incident requiring mandatory disclosure under various data protection regulations. 

The exposed personal information could potentially be exploited for identity theft, social engineering attacks, or targeted phishing campaigns against affected users.

Upon discovering the security incident, Zoomcar immediately activated its incident response plan, following established cybersecurity frameworks such as the NIST Cybersecurity Framework protocols. 

The company’s security team implemented containment measures to prevent further unauthorized access and began forensic analysis to determine the attack vector and scope of compromise. 

These immediate response actions included isolating affected systems, implementing additional network monitoring tools, and conducting comprehensive security audits across their cloud infrastructure.

The company has engaged third-party cybersecurity specialists to assist with the investigation and implement enhanced security controls. 

Automate threat response with ANY.RUN’s TI Feeds—Enrich alerts and block malicious IPs across all endpoints -> Request full access

The post Zoomcar Hacked – 8.4 Million Users’ Sensitive Details Exposed appeared first on Cyber Security News.