Unacademy Confirms Data Breach; Database of 2.2 Crore Users Up for Sale on the Dark Web

Unacademy Confirms Data Breach; Database of 2.2 Crore Users Up for Sale on the Dark Web
One of India’s largest e-learning platforms, Unacademy, suffered an enormous information breach again in January earlier this yr. The firm has already confirmed the breach and stated that it impacts over 1.1 crore customers of the platform. This determine, nevertheless, is solely half of the variety of person accounts that the alleged hacker has put up on the market on the darkish net.

First spotted by US cybersecurity agency Cyble, Unacademy’s person database was up on the market on the darkish net for $2,000 (round Rs. 1,50,000) earlier this week. The itemizing marketed that the database to have 2 crore information however in actuality, it was discovered to have the information of 2,19,09,707 customers. This is near 2.2 crore learners, which is sort of the complete userbase of Unacademy. The breach was first reported by BleepingComputer.


The database does comprise delicate data, together with title, username, e-mail IDs, and passwords of the customers. The passwords are encrypted with a SHA-256 hash, which suggests they aren’t plain textual content and simply viewable. Also, the database lists whether or not an account is at present lively or not.

Cyble additional reveals that the uncovered database not solely contains the main points of standard customers. Corporate e-mail addresses from bigtime tech giants similar to Cognizant, Google, Infosys, Facebook, and Wipro had been additionally leaked within the breach. This means if any of the workers at these corporations had been utilizing the identical login credentials for Unacademy {and professional} use, then their private information may very well be in danger.

As talked about earlier, Facebook-backed Unacademy has acknowledged the information breach. Co-founder and CEO Gaurav Munjal took to Twitter right this moment to make clear the present state of affairs. He confirms that the customers’ fundamental data was compromised within the hack however the location and monetary information are protected and sound.

If you’re a common Unacademy person, we strongly counsel you alter your password – not solely on this platform however another web site the place you enter the identical password as properly – immediately. The firm is at present investigating the information breach and may attain out to affected customers, with a request to safe their accounts, within the coming days.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.