Massive data breach: Personal information of over 7.5 million boAt users leaked

Share This News

In a significant cybersecurity incident, Indian audio products and smartwatch manufacturer boAt has reportedly fallen victim to a major data breach, exposing the personal information of over 7.5 million customers. 

The breach, revealed in a news report, has led to the leaking and subsequent sale of sensitive customer data on the dark web. This includes names, addresses, contact numbers, email IDs, and customer IDs of boAt users. Concerns arise as customers who recently purchased boAt products and provided their details may be affected. The dark web, accessible only via the TOR network, is notorious for facilitating illegal activities, including the sale of stolen data. 

Founded in 2016 by Shark Tank judge Aman Gupta and Sameer Mehta, boAt has emerged as the second most popular wearable brand in the third quarter of 2023, as per an IDC report. The Gurugram-based company is widely popular among Indian consumers and is known for its reasonable earphones and other audio products. It also makes other products, like smartwatches and speakers.

A market leader in audio devices and wearables, boAt Lifestyle’s sales crossed Rs3,000 crore in March 2023. Its total revenue stood at Rs3,403.1 crore against Rs2,886.4 crore in FY22. Reportedly, boAt witnessed a net loss of Rs129.4 crore in FY23 after posting a profit of Rs68.7 crore in FY22

This breach highlights ongoing challenges with data security in India, with past incidents exposing sensitive information like Aadhaar numbers. Additionally, it underscores the need for stricter regulations and protocols surrounding data breaches and reporting in the country. 

Affected customers are urged to remain vigilant against potential online scams and phishing attempts, as cybercriminals may exploit the leaked information for fraudulent purposes. This incident emphasizes the importance for companies to prioritize robust data security measures to safeguard customer information from unauthorized access and breaches.