As per IB Times UK and confirmed by Zomato officially, Zomato has been hacked and hackers have been able to syphon off database contain email ids and hashed password of 17 million Zomato users!
As per Zomato, there is no evidence yet that any of the user financial or credit card information was accessed by the hacker.
However, a hacker going by the name of “nclay” has put up the user database of Zomato (containing email ids and hashed passwords), up for sale on the dark web!
Zomato issued a statement, stating, “Our team is actively scanning all possible breach vectors and closing any gaps in our environment. And though the hashed password cannot be converted back to plain text, as a safety measure, we have reset the passwords for all affected users and logged them out of the app and website.”
Zomato has also stated that it is going to enhance the security of its system and take all steps possible to avoid such data breaches in future.
If you’re a Zomato user and you have used the same password that you use on Zomato, elsewhere. Then it is a good idea to change that password to something else ASAP and do not use the same password across different websites.