In early 2018, the popular online real estate platform PropTiger suffered a major data breach where a database file sized 3.46GB was exposed and two years later the whole data is found on a hacking forum Have I Been Pwned (HIBP).

More than 2 million breached customer data of PropTiger was provided to HIBP on March 24, 2020, by a database search engine named DeHashed. It was confirmed that 69% of the data was already present in the HIBP site.

New breach: PropTiger had a 2018 database file exposed and shared on a popular hacking forum last month. Exposed data included user records and login histories containing over 2M unique email addresses. 69% were already in @haveibeenpwned #breach — Black_Hat_India (@black_hat_india) March 24, 2020

See Also: SQL Dump of Indian tech news site BGR shared on Hacker Forum

Ad

According to hacking forum HIBP, the exposed data contains both user records and login histories of 2,156,921 customers including their email addresses, names, DoBs, genders, IP addresses, device information and even passwords stored as MD5 hashes.

#RT @haveibeenpwned: New breach: PropTiger had a 2018 database file exposed and shared on a popular hacking forum last month. Exposed data included user records and login histories containing over 2M unique email addresses. 69% were already in @haveibeen… https://t.co/SxpPZ1iiy2 — Simon Foster (@funkysi1701) March 24, 2020

PropTiger data dump on HIBP also notified that “PropTiger advised they believe the usability of the data is “limited” due to how certain data attributes were generated and stored.“

According to CrunchBase, PropTiger an Indian real estate adviser that had previously acquired Housing.com, Makaan.com, PropRates, and few other platforms has pan-India presence with more than 500 employed staff.

See Also: A massive database of more than 5 Billion “leaked records” was exposed online