Redbus.in, a popular India based ticketing service might have had their database compromised by hackers on 15 September 2016 leading to user information being dumped on to the darknet. The breach seems to be massive as the data dump supposedly has 4,116,187 user email IDs. The company seemed to be unaware of the incident till users on Twitter asked for verification. Redbus.in, initially, denied the leak in a hasty tweet which was soon deleted. It has since Tweeted that the matter has been escalated on a priority basis to their concerned team.
Those who wish to check out if their email IDs have been compromised can head over to hacked-emails.com and input their email IDs. Do note that at this stage very little is known if the user data contains plaintext email IDs or if user data is indeed hashed. We will update the story as we obtain more data. Also, haveibeenpwned, another such website which allows users to check if their IDs have been compromised is yet to report on this hack.
All that is known at this point is that 13.72 GB of data has been dumped onto the darknet comprising of 673,491,695 lines of text amounting to 4,116,187 user email IDs. The data dump was first spotted on 15th September 2016 and the actual hack seems to have occurred on 9th September 2016.
We noticed the hack on Reddit today and will be reporting more on the same as the news develops. The Redbus.in data breach is the latest among multiple such hacks this year.