Tuesday , April 1 2025
boAT

Over 7.5 million “boAt” users personal information leaked

Data of over 7.5 million boAt customers is now on the dark web. This includes personal information like names, addresses, contact numbers, email IDs, and customer IDs. The attacker has released around 2GB of data on a forum.

On April 5, a hacker named ShopifyGUY said they hacked the data of boAt Lifestyle, a company that makes audio products and smartwatches. The hacker released files containing personal information of customers, which includes 7.5 million entries.

CVE-2025-1268
Patch urgently! Canon Fixes Critical Printer Driver Flaw

Canon has announced a critical security vulnerability, CVE-2025-1268, in printer drivers for its production printers, multifunction printers, and laser printers....
Read More
CVE-2025-1268  Patch urgently! Canon Fixes Critical Printer Driver Flaw

Within Minute, RamiGPT To Escalate Privilege Gaining Root Access

RamiGPT is an AI security tool that targets root accounts. Using PwnTools and OpwnAI, it quickly navigated privilege escalation scenarios...
Read More
Within Minute, RamiGPT To Escalate Privilege Gaining Root Access

Australian fintech database exposed in 27000 records

Cybersecurity researcher Jeremiah Fowler recently revealed a sensitive data exposure involving the Australian fintech company Vroom by YouX, previously known...
Read More
Australian fintech database exposed in 27000 records

Over 200 Million Info Leaked Online Allegedly Belonging to X

Safety Detectives' Cybersecurity Team found a forum post where a threat actor shared a .CSV file with over 200 million...
Read More
Over 200 Million Info Leaked Online Allegedly Belonging to X

FBI investigating cyberattack at Oracle, Bloomberg News reports

The Federal Bureau of Investigation (FBI) is probing the cyberattack at Oracle (ORCL.N), opens new tab that has led to...
Read More
FBI investigating cyberattack at Oracle, Bloomberg News reports

OpenAI Offering $100K Bounties for Critical Vulns

OpenAI has increased its maximum bug bounty payout to $100,000, up from $20,000, to encourage the discovery of critical vulnerabilities...
Read More
OpenAI Offering $100K Bounties for Critical Vulns

Splunk Alert User RCE and Data Leak Vulns

Splunk has released a security advisory about critical vulnerabilities in Splunk Enterprise and Splunk Cloud Platform. These issues could lead...
Read More
Splunk Alert User RCE and Data Leak Vulns

CIRT alert Situational Awareness for Eid Holidays

As the Eid holidays near, cybercriminals may try to take advantage of weakened security during this time. The CTI unit...
Read More
CIRT alert Situational Awareness for Eid Holidays

Cyberattack on Malaysian airports: PM rejected $10 million ransom

Operations at Kuala Lumpur International Airport (KLIA) were unaffected by a cyber attack in which hackers demanded US$10 million (S$13.4...
Read More
Cyberattack on Malaysian airports: PM rejected $10 million ransom

Micropatches released for Windows zero-day leaking NTLM hashes

Unofficial patches are available for a new Windows zero-day vulnerability that allows remote attackers to steal NTLM credentials by deceiving...
Read More
Micropatches released for Windows zero-day leaking NTLM hashes

Forbes India said they verified the information by speaking to some of the customers who confirmed purchasing boAt products in the recent past.

image
Source: Daily Dark web

Ritesh BhatiaRitesh Bhatia, Founder – V4WEB CYBERSECURITY of india said his social handle that Boat customers should put on their life jackets and exercise heightened caution as their personal information, including mobile numbers and addresses, is exposed, making them potential targets for cybercriminals. It’s advisable to verify any unfamiliar calls or letters received by post (gift cards, bumper prize letters, fake notices impersonating law enforcing agencies, etc etc )

At the very least, the Shark Tank judge, and not the media, should have notified every customer about the breach and the extent of data leakage. Mandatory corporate communications to all stakeholders within 24 to 72 hours should be enforced. As for whether Boat will incur the 50-250 crore penalty under the new Digital Personal Data Protection Bill, it seems improbable.

Founded in 2016 by Aman Gupta and Sameer Mehta from Shark Tank, boAt is now the second most popular wearable brand as per an IDC report. The Gurugram-based company is well-liked by Indian consumers for its affordable earphones, audio products, smartwatches, and speakers.

boAt Lifestyle, a company that specializes in audio devices and wearables, achieved great success in March 2023 with sales of over Rs3,000 crore. Its total revenue for the year was Rs3,403.1 crore, compared to Rs2,886.4 crore in the previous year (FY22). However, in FY23, boAt recorded a net loss of Rs129.4 crore, despite a profit of Rs68.7 crore in FY22.2.

The Indian consumer electronics company postponed its IPO in 2021 due to market instability. In October 2022, its parent company, Imagine Marketing, raised Rs500 crore from an existing shareholder, a Warburg Pincus affiliate, and a new investor, Malabar Investments. In total, the company has raised $177 million from investors including Qualcomm Ventures, InnoVen Capital, Navi Technologies, and Fireside Ventures.

boAt competes against companies like Fire-Boltt, Noise, Xiaomi and Samsung.

Source: Forbes India, Zeenews, India today

Check Also

FBI

FBI investigating cyberattack at Oracle, Bloomberg News reports

The Federal Bureau of Investigation (FBI) is probing the cyberattack at Oracle (ORCL.N), opens new …

Leave a Reply

Your email address will not be published. Required fields are marked *